def _inner(request, domain, *args, **kwargs):
if not hasattr(request, "couch_user"):
return domain_specific_login_redirect(request, domain)
elif request.user.is_superuser or request.couch_user.has_permission(domain, permission, data=data):
return view_func(request, domain, *args, **kwargs)
else:
return HttpResponseForbidden()
def _inner(request, domain, *args, **kwargs):
if not hasattr(request, "couch_user"):
return domain_specific_login_redirect(request, domain)
elif request.user.is_superuser or permission_check(request.couch_user, domain):
return view_func(request, domain, *args, **kwargs)
else:
raise PermissionDenied()
def _inner(request, domain, *args, **kwargs):
if not hasattr(request, "couch_user"):
return domain_specific_login_redirect(request, domain)
elif request.user.is_superuser or permission_check(
request.couch_user, domain):
return view_func(request, domain, *args, **kwargs)
else:
raise PermissionDenied()
def _inner(request, domain, *args, **kwargs):
if not hasattr(request, "couch_user"):
return domain_specific_login_redirect(request, domain)
elif request.user.is_superuser or request.couch_user.has_permission(domain, permission, data=data):
return view_func(request, domain, *args, **kwargs)
else:
return HttpResponseForbidden(_("Sorry, you don't have permission to access that page! "
"Contact your administrator if you believe this is a mistake."))
def _inner(request, domain, *args, **kwargs):
if not hasattr(request, "couch_user"):
return domain_specific_login_redirect(request, domain)
elif request.user.is_superuser or permission_check(request.couch_user, domain):
return view_func(request, domain, *args, **kwargs)
else:
if request.is_ajax():
return HttpResponse(_("Sorry, you don't have permission to do this action!"), status=403)
raise PermissionDenied()
def _inner(request, domain, *args, **kwargs):
if not hasattr(request, "couch_user"):
return domain_specific_login_redirect(request, domain)
elif request.user.is_superuser or request.couch_user.has_permission(
domain, permission, data=data):
return view_func(request, domain, *args, **kwargs)
else:
return HttpResponseForbidden(
_("Sorry, you don't have permission to access that page! "
"Contact your administrator if you believe this is a mistake."
))
def _inner(request, domain, *args, **kwargs):
if not hasattr(request, "couch_user"):
return domain_specific_login_redirect(request, domain)
elif request.user.is_superuser or permission_check(
request.couch_user, domain):
return view_func(request, domain, *args, **kwargs)
else:
if request.is_ajax():
return HttpResponse(_(
"Sorry, you don't have permission to do this action!"),
status=403)
raise PermissionDenied()
def _inner(request, domain, couch_user_id, *args, **kwargs):
go_ahead = False
if hasattr(request, "couch_user"):
user = request.couch_user
if user.is_superuser or user.user_id == couch_user_id or (hasattr(user, "is_domain_admin") and user.is_domain_admin()):
go_ahead = True
else:
couch_user = CouchUser.get_by_user_id(couch_user_id)
if not couch_user:
raise Http404()
if couch_user.is_commcare_user() and request.couch_user.can_edit_commcare_users():
go_ahead = True
elif couch_user.is_web_user() and request.couch_user.can_edit_web_users():
go_ahead = True
if go_ahead:
return login_and_domain_required(view_func)(request, domain, couch_user_id, *args, **kwargs)
else:
return domain_specific_login_redirect(request, domain)
def _inner(request, domain, couch_user_id, *args, **kwargs):
go_ahead = False
if hasattr(request, "couch_user"):
user = request.couch_user
if user.is_superuser or user.user_id == couch_user_id or (hasattr(
user, "is_domain_admin") and user.is_domain_admin()):
go_ahead = True
else:
couch_user = CouchUser.get_by_user_id(couch_user_id)
if not couch_user:
raise Http404()
if couch_user.is_commcare_user(
) and request.couch_user.can_edit_commcare_users():
go_ahead = True
elif couch_user.is_web_user(
) and request.couch_user.can_edit_web_users():
go_ahead = True
if go_ahead:
return login_and_domain_required(view_func)(request, domain,
couch_user_id, *args,
**kwargs)
else:
return domain_specific_login_redirect(request, domain)
