# vim: set fileencoding=utf-8 ts=4 shiftwidth=4 softtabstop=4 expandtab:
from tablon.models import Tema, Foro
from django.http import HttpResponseForbidden, HttpResponseRedirect
def foro_can(permission):
"""
Decorator que comprueba los permisos del usuario para leer/escribir en un foro
"""
def _dec(view_func):
def _foro_can(request, *args, **kwargs):
if permission == 'read':
if Foro.objects.get(id=kwargs['foro_id']).global_read is True:
return view_func(request, *args, **kwargs)
if request.user.is_anonymous():
return HttpResponseRedirect('/usuarios/login/?next=%s' % request.path)
if permission == 'write':
if Foro.objects.get(id=kwargs['foro_id']).global_write is True:
return view_func(request, *args, **kwargs)
if request.user.get_profile().foro_can(permission, kwargs['foro_id']):
return view_func(request, *args, **kwargs)
return HttpResponseForbidden('No tiene suficientes permisos para realizar esta operaciĆ³n (%s).
' %
(permission))
_foro_can.__doc__ = view_func.__doc__
_foro_can.__dict__ = view_func.__dict__
return _foro_can
return _dec
def tema_can(permission):
"""
Decorator que comprueba los permisos del usuario para leer/contestar un tema
"""
def _dec(view_func):
def _tema_can(request, *args, **kwargs):
foro_id = Tema.objects.get(id=kwargs['tema_id']).foro_id
if permission == 'read':
if Foro.objects.get(id=foro_id).global_read is True:
return view_func(request, *args, **kwargs)
if not request.user.is_authenticated():
return HttpResponseRedirect('/usuarios/login/?next=%s' % request.path)
if permission == 'write':
if Foro.objects.get(id=foro_id).global_write is True:
return view_func(request, *args, **kwargs)
if request.user.get_profile().foro_can(permission, foro_id):
return view_func(request, *args, **kwargs)
return HttpResponseForbidden('No tiene suficientes permisos para realizar esta operaciĆ³n (%s).
' %
(permission))
_tema_can.__doc__ = view_func.__doc__
_tema_can.__dict__ = view_func.__dict__
return _tema_can
return _dec