def getMetaCmds(self, context=None, stereotype='', sort=True):
stereotypes = {'insert':'manage_add','tab':'manage_tab','repository':'manage_repository','zcatalog':'manage_zcatalog'}
metaCmds = []
portalMasterMetaCmds = None
for metaCmd in [x for x in self.commands if x['id'].startswith(stereotypes.get(stereotype, ''))]:
# Acquire from parent.
if metaCmd.get('acquired', 0)==1:
if portalMasterMetaCmds is None:
portalMaster = self.getPortalMaster()
portalMasterMetaCmds = portalMaster.getMetaCmds(stereotype=stereotype)
l = [x for x in portalMasterMetaCmds if x['id']==metaCmd['id']]
if len(l) > 0:
metaCmd = l[0]
metaCmd['acquired'] = 1
else:
metaCmd = metaCmd.copy()
metaCmd['home'] = self.aq_parent
metaCmd['stereotype'] = ' '.join([x for x in stereotypes if metaCmd['id'].startswith(stereotypes[x])])
metaCmd['action'] = '%smanage_executeMetacmd?id='+metaCmd['id']
if metaCmd.get('execution') == 2:
metaCmd['action'] = 'javascript:%%s'+metaCmd['id']
metaCmds.append(metaCmd)
if context is not None:
request = context.REQUEST
auth_user = request['AUTHENTICATED_USER']
user_roles = context.getUserRoles(auth_user)
absolute_url = '/'.join(list(context.getPhysicalPath())+[''])
l = []
for metaCmd in metaCmds:
canExecute = True
if canExecute:
meta_types = metaCmd.get('meta_types',[])
hasMetaType = False
hasMetaType = hasMetaType or '*' in meta_types
hasMetaType = hasMetaType or context.meta_id in meta_types
hasMetaType = hasMetaType or 'type(%s)'%context.getType() in meta_types
canExecute = canExecute and hasMetaType
if canExecute:
roles = metaCmd.get('roles',[])
hasRole = False
hasRole = hasRole or '*' in roles
hasRole = hasRole or len(standard.intersection_list(user_roles,roles)) > 0
hasRole = hasRole or auth_user.has_role('Manager')
canExecute = canExecute and hasRole
if canExecute:
nodes = standard.string_list(metaCmd.get('nodes', '{$}'))
sl = []
sl.extend([(context.getHome().id+'/content/'+x[2:-1]+'/').replace('//', '/') for x in [x for x in nodes if x.find('@')<0]])
sl.extend([(x[2:-1].replace('@', '/content/')+'/').replace('//', '/') for x in [x for x in nodes if x.find('@')>0]])
hasNode = len([x for x in sl if absolute_url.find(x)>=0]) > 0
canExecute = canExecute and hasNode
if canExecute:
l.append(metaCmd)
metaCmds = l
return metaCmds
def filtered_workflow_actions(self, path=''):
actions = []
REQUEST = self.REQUEST
lang = REQUEST['lang']
auth_user = REQUEST['AUTHENTICATED_USER']
#-- Workflow.
if not self.getAutocommit() and self.isVersionContainer():
wfStates = self.getWfStates(REQUEST)
transitions = self.getWorkflowManager().getTransitions()
roles = self.getUserRoles(auth_user)
for transition in transitions:
wfFrom = transition.get('from', [])
wfPerformer = transition.get('performer', [])
wfTo = transition.get('to', [])
append = False
append = append or ((wfFrom is None or len(wfFrom) == 0)
and len(wfTo) == 0)
append = append or (
len(standard.intersection_list(wfStates, wfFrom)) > 0
and len(wfTo) > 0)
append = append and (
len(standard.intersection_list(roles, wfPerformer)) > 0
or auth_user.has_permission('Manager', self))
if append:
actions.append(
(transition['name'], path + 'manage_wfTransition',
transition.get('icon_clazz', 'fas fa-square')))
#-- Headline,
if len(actions) > 0:
actions.insert(
0, ('----- %s -----' % self.getZMILangStr('TAB_WORKFLOW'),
'workflow-action'))
# Return action list.
return actions
def intersection_list(self, l1, l2):
warn(self, 'intersection_list',
'Products.zms.standard.intersection_list')
return standard.intersection_list(l1, l2)
def zmi_basic_actions(container, context, objAttr, objChildren, objPath=''):
"""
Returns sorted list of basic actions (undo, delete, cut, copy, paste,
move up/down) and custom commands.
"""
actions = []
REQUEST = container.REQUEST
lang = REQUEST['lang']
auth_user = REQUEST['AUTHENTICATED_USER']
repetitive = objAttr.get('repetitive', 0) == 1
mandatory = objAttr.get('mandatory', 0) == 1
#-- Action: Edit.
if context is not None:
userdef_roles = list(
container.getRootElement().aq_parent.userdefined_roles()) + list(
container.getRootElement().userdefined_roles())
user_roles = [
x for x in context.getUserRoles(auth_user, resolve=False)
if x in userdef_roles
]
can_edit = True
constraints = context.attr('check_constraints')
if isinstance(constraints, dict) and 'RESTRICTIONS' in constraints:
for restriction in constraints.get('RESTRICTIONS'):
permissions = restriction[2]
for permission in permissions:
can_edit = auth_user.has_permission(permission, context)
if not can_edit:
break
if can_edit:
actions.append((container.getZMILangStr('BTN_EDIT'),
objPath + 'manage_main', 'fas fa-pencil-alt'))
if context.getLevel() > 0:
if repetitive or not mandatory:
#-- Action: Undo.
can_undo = context.inObjStates(
['STATE_NEW', 'STATE_MODIFIED', 'STATE_DELETED'], REQUEST)
if can_undo:
actions.append((container.getZMILangStr('BTN_UNDO'),
'manage_undoObjs', 'fas fa-undo'))
#-- Action: Delete.
if not objAttr:
actions.append((container.getZMILangStr('BTN_DELETE'),
'manage_eraseObjs', 'fas fa-times'))
else:
can_delete = not context.inObjStates(
['STATE_DELETED'], REQUEST) and context.getAutocommit(
) or context.getDCCoverage(REQUEST).endswith('.' +
lang)
if can_delete:
ob_access = context.getObjProperty(
'manage_access', REQUEST)
can_delete = can_delete and (
(not isinstance(ob_access, dict)) or
(ob_access.get('delete') is None) or (len(
standard.intersection_list(
ob_access.get('delete'), user_roles)) > 0))
metaObj = container.getMetaobj(context.meta_id)
mo_access = metaObj.get('access', {})
mo_access_deny = mo_access.get('delete_deny', [])
can_delete = can_delete and len([
x for x in user_roles if x not in mo_access_deny
]) > 0
can_delete = can_delete or auth_user.has_role(
'Manager')
if can_delete:
actions.append(
(container.getZMILangStr('BTN_DELETE'),
'manage_deleteObjs', 'fas fa-trash-alt'))
#-- Action: Cut.
can_cut = not context.inObjStates(
['STATE_DELETED'], REQUEST) and context.getAutocommit(
) or context.getDCCoverage(REQUEST).endswith('.' + lang)
if can_cut:
actions.append((container.getZMILangStr('BTN_CUT'),
'manage_cutObjects', 'fas fa-cut'))
#-- Action: Copy.
can_copy = context.getParentByLevel(1).meta_id != 'ZMSTrashcan'
if can_copy:
actions.append((container.getZMILangStr('BTN_COPY'),
'manage_copyObjects', 'fas fa-copy'))
#-- Actions: Move.
can_move = objChildren > 1
if can_move:
actions.append(
(container.getZMILangStr('ACTION_MOVEUP'),
objPath + 'manage_moveObjUp', 'fas fa-angle-up'))
actions.append(
(container.getZMILangStr('ACTION_MOVEDOWN'),
objPath + 'manage_moveObjDown', 'fas fa-angle-down'))
#-- Action: Paste.
if repetitive or objChildren == 0:
if container.cb_dataValid():
if objAttr['type'] == '*':
meta_ids = objAttr['keys']
else:
meta_ids = [objAttr['type']]
append = True
# dynamic list of types
if standard.dt_executable(container, '\n'.join(meta_ids)):
meta_ids = standard.dt_exec(container, '\n'.join(meta_ids))
try:
for ob in container.cp_get_obs(REQUEST):
metaObj = ob.getMetaobj(ob.meta_id)
append = append and (ob.meta_id in meta_ids or 'type(%s)' %
metaObj['type'] in meta_ids)
except:
append = False
if append:
actions.append((container.getZMILangStr('BTN_PASTE'),
'manage_pasteObjs', 'fas fa-paste'))
#-- Custom Commands.
actions.extend(zmi_command_actions(context, stereotype='',
objPath=objPath))
# Return action list.
return actions
def zmi_insert_actions(container, context, objAttr, objChildren, objPath=''):
"""
Returns sorted list of insert actions.
"""
actions = []
if not objAttr:
return actions
REQUEST = container.REQUEST
auth_user = REQUEST['AUTHENTICATED_USER']
absolute_url = '/'.join(list(container.getPhysicalPath()) + [''])
userdef_roles = list(
container.getRootElement().aq_parent.userdefined_roles()) + list(
container.getRootElement().userdefined_roles())
user_roles = [
x for x in container.getUserRoles(auth_user, resolve=False)
if x in userdef_roles
]
repetitive = objAttr.get('repetitive', 0) == 1
mandatory = objAttr.get('mandatory', 0) == 1
#-- Objects.
if repetitive or len(container.getObjChildren(objAttr['id'],
REQUEST)) == 0:
metaObjIds = container.getMetaobjIds(sort=True)
meta_ids = []
if objAttr['type'] == '*':
# get types
meta_keys = objAttr['keys']
# dynamic list of types
if standard.dt_executable(container, '\n'.join(meta_keys)):
meta_keys = standard.dt_exec(container, '\n'.join(meta_keys))
# iterate types
metaobj_manager = container.getMetaobjManager()
for meta_id in meta_keys:
if meta_id.startswith('type(') and meta_id.endswith(')'):
for metaObjId in metaObjIds:
metaObj = metaobj_manager.getMetaobj(
metaObjId, aq_attrs=['enabled'])
if metaObj['type'] == meta_id[5:-1] and metaObj[
'enabled'] == 1:
meta_ids.append(metaObj['id'])
elif meta_id in metaObjIds:
meta_ids.append(meta_id)
else:
container.writeError(
'[zmi_insert_actions]: %s.%s contains invalid meta_id \'%s\''
% (container.meta_id, objAttr['id'], meta_id))
else:
meta_ids.append(objAttr['type'])
for meta_id in meta_ids:
metaObj = container.getMetaobj(meta_id)
ob_access = True
ob_manage_access = container.getMetaobjAttr(
meta_id, 'manage_access')
if ob_manage_access is not None:
try:
ob_access = standard.dt_exec(container,
ob_manage_access['custom'])
except:
standard.writeError(
container,
'[zmi_insert_actions]: can\'t get manage_access from %s'
% meta_id)
can_insert = True
if objAttr['type'] == '*':
can_insert = can_insert and (
(not isinstance(ob_access, dict)) or
(ob_access.get('insert') is None) or (len(
standard.intersection_list(ob_access.get('insert'),
user_roles)) > 0))
mo_access = metaObj.get('access', {})
mo_access_deny = mo_access.get('insert_deny', [])
can_insert = can_insert and len(
[x for x in user_roles if x not in mo_access_deny]) > 0
can_insert = can_insert or auth_user.has_role('Manager')
mo_access_insert_nodes = standard.string_list(
mo_access.get('insert_custom', '{$}'))
sl = []
for x in mo_access_insert_nodes:
if x.find('@') < 0:
si = (container.getHome().id + '/content/' + x[2:-1] +
'/').replace('//', '/')
else:
si = (x[2:-1].replace('@', '/content/') + '/').replace(
'//', '/')
sl.append(si)
can_insert = can_insert and len(
[x for x in sl if absolute_url.find(x) >= 0]) > 0
if can_insert:
if meta_id in container.dGlobalAttrs and 'constructor' in container.dGlobalAttrs[
meta_id]:
value = 'manage_addProduct/zms/%s' % container.dGlobalAttrs[
meta_id]['constructor']
elif metaObj['type'] == 'ZMSModule':
value = 'manage_addZMSModule'
elif objAttr['type'] in meta_ids and repetitive and objAttr.get(
'custom'):
value = 'manage_addZMSCustomDefault'
else:
value = 'manage_addProduct/zms/manage_addzmscustomform'
action = (container.display_type(REQUEST, meta_id), value,
container.display_icon(REQUEST, meta_id))
if action not in actions:
actions.append(action)
#-- Insert Commands.
actions.extend(zmi_command_actions(container, stereotype='insert'))
#-- Sort.
actions.sort()
#-- Headline.
if len(actions) > 0:
actions.insert(
0, ('----- %s -----' % container.getZMILangStr('CAPTION_INSERT') %
container.getZMILangStr('ATTR_CONTENT'), 'insert-action'))
# Return action list.
return actions