matthias/mayan-edms
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add ACL support to the document signatures app

Browse Source
This commit is contained in:
Roberto Rosario
2012-01-03 03:13:58 -04:00
parent 29ef0e3f42
commit 3fd64d230b
2 changed files with 25 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
apps/document_signatures/__init__.py
View File

@@ -1,4 +1,5 @@
from __future__ import absolute_import from __future__ import absolute_import
import logging import logging
try: try:
@@ -11,9 +12,9 @@ from django.db.models.signals import post_save
from documents.models import Document, DocumentVersion from documents.models import Document, DocumentVersion
from navigation.api import register_links from navigation.api import register_links
from django_gpg.runtime import gpg from django_gpg.runtime import gpg
from django_gpg.exceptions import GPGDecryptionError from django_gpg.exceptions import GPGDecryptionError
from acls.api import class_permissions
from .models import DocumentVersionSignature from .models import DocumentVersionSignature
from .permissions import ( from .permissions import (
@@ -59,3 +60,9 @@ register_links(['document_verify', 'document_signature_upload', 'document_signat
DocumentVersion.register_pre_open_hook(1, document_pre_open_hook) DocumentVersion.register_pre_open_hook(1, document_pre_open_hook)
post_save.connect(document_post_save, sender=DocumentVersion) post_save.connect(document_post_save, sender=DocumentVersion)
class_permissions(Document, [
PERMISSION_DOCUMENT_VERIFY,
PERMISSION_SIGNATURE_UPLOAD,
PERMISSION_SIGNATURE_DOWNLOAD
])

21
apps/document_signatures/views.py
View File

@@ -11,10 +11,12 @@ from django.contrib import messages
from django.utils.safestring import mark_safe from django.utils.safestring import mark_safe
from django.conf import settings from django.conf import settings
from django.template.defaultfilters import force_escape from django.template.defaultfilters import force_escape
from django.core.exceptions import PermissionDenied
from documents.models import Document, RecentDocument from documents.models import Document, RecentDocument
from permissions.models import Permission from permissions.models import Permission
from filetransfers.api import serve_file from filetransfers.api import serve_file
from acls.models import AccessEntry
from django_gpg.api import SIGNATURE_STATES from django_gpg.api import SIGNATURE_STATES
@@ -27,9 +29,13 @@ logger = logging.getLogger(__name__)
def document_verify(request, document_pk): def document_verify(request, document_pk):
Permission.objects.check_permissions(request.user, [PERMISSION_DOCUMENT_VERIFY])
document = get_object_or_404(Document, pk=document_pk) document = get_object_or_404(Document, pk=document_pk)
try:
Permission.objects.check_permissions(request.user, [PERMISSION_DOCUMENT_VERIFY])
except PermissionDenied:
AccessEntry.objects.check_access(PERMISSION_DOCUMENT_VERIFY, request.user, document)
RecentDocument.objects.add_document_for_user(request.user, document) RecentDocument.objects.add_document_for_user(request.user, document)
signature = DocumentVersionSignature.objects.verify_signature(document) signature = DocumentVersionSignature.objects.verify_signature(document)
@@ -69,10 +75,13 @@ def document_verify(request, document_pk):
def document_signature_upload(request, document_pk): def document_signature_upload(request, document_pk):
Permission.objects.check_permissions(request.user, [PERMISSION_SIGNATURE_UPLOAD])
document = get_object_or_404(Document, pk=document_pk) document = get_object_or_404(Document, pk=document_pk)
try:
Permission.objects.check_permissions(request.user, [PERMISSION_SIGNATURE_UPLOAD])
except PermissionDenied:
AccessEntry.objects.check_access(PERMISSION_SIGNATURE_UPLOAD, request.user, document)
RecentDocument.objects.add_document_for_user(request.user, document) RecentDocument.objects.add_document_for_user(request.user, document)
post_action_redirect = None post_action_redirect = None
@@ -103,9 +112,13 @@ def document_signature_upload(request, document_pk):
def document_signature_download(request, document_pk): def document_signature_download(request, document_pk):
Permission.objects.check_permissions(request.user, [PERMISSION_SIGNATURE_DOWNLOAD])
document = get_object_or_404(Document, pk=document_pk) document = get_object_or_404(Document, pk=document_pk)
try:
Permission.objects.check_permissions(request.user, [PERMISSION_SIGNATURE_DOWNLOAD])
except PermissionDenied:
AccessEntry.objects.check_access(PERMISSION_SIGNATURE_DOWNLOAD, request.user, document)
try: try:
if DocumentVersionSignature.objects.has_detached_signature(document): if DocumentVersionSignature.objects.has_detached_signature(document):
signature = DocumentVersionSignature.objects.detached_signature(document) signature = DocumentVersionSignature.objects.detached_signature(document)