def search():
if not request.vars.item_per_load:
item_per_load = 5
else:
item_per_load = int(request.vars.item_per_load)
desk = db.desk(session.desk_id)
search_keys = request.vars.search_keys
results = Whoosh().search(search_keys, 1, pagelen=item_per_load+1)
# remove from result the item not accesible for the user
# TODO: e more elegant way of doing this
results = [x for x in results if application.canReadItem(x)]
# --
query = db.item.unique_id.belongs(results)
if request.vars.opt == 'desk':
# search only in desk
query &= db.item.id.belongs(desk.item_list)
item_list = db(
query
).select(
orderby=[~db.item.created_on],
limitby=(0, item_per_load+1)
)
response.view = 'desk/item_list.load'
return locals()
def delete():
desk = db.desk(request.args(0))
session.desk_id = desk.id
db.desk.item_list.readable = False
db.desk.item_list.writable = False
form = SQLFORM.confirm(T("Are you sure?"),
{T('Cancel'): URL('index', args=[desk.id])})
if form.accepted:
# empty move all the items in the desk to the owners desk
for item_id in desk.item_list:
item = db.item(item_id)
owner = db.auth_user(item.created_by)
owner_desk = application.getUserDesk(user=owner)
owner_desk_items = owner_desk.item_list
owner_desk_items.append(item_id)
owner_desk.update_record(item_list=owner_desk_items)
# remove desk from org
org = db(db.organization.desks.contains(desk.id)).select().first()
desk_list = org.desks
desk_list.remove(desk.id)
org.update_record(desks=desk_list)
# delete the desk from db.
del db.desk[desk.id]
# cleanup context
session.desk_id = None
# go to org view
redirect(URL('org', 'view', args=[org.id]))
return locals()
def search():
if not request.vars.item_per_load:
item_per_load = 5
else:
item_per_load = int(request.vars.item_per_load)
desk = db.desk(session.desk_id)
search_keys = request.vars.search_keys
results = Whoosh().search(search_keys, 1, pagelen=item_per_load + 1)
# remove from result the item not accesible for the user
# TODO: e more elegant way of doing this
results = [x for x in results if application.canReadItem(x)]
# --
query = db.item.unique_id.belongs(results)
if request.vars.opt == 'desk':
# search only in desk
query &= db.item.id.belongs(desk.item_list)
item_list = db(query).select(orderby=[~db.item.created_on],
limitby=(0, item_per_load + 1))
response.view = 'desk/item_list.load'
return locals()
def delete():
desk = db.desk(request.args(0))
session.desk_id = desk.id
db.desk.item_list.readable = False
db.desk.item_list.writable = False
form = SQLFORM.confirm(
T("Are you sure?"),
{T('Cancel'): URL('index', args=[desk.id])})
if form.accepted:
# empty move all the items in the desk to the owners desk
for item_id in desk.item_list:
item = db.item(item_id)
owner = db.auth_user(item.created_by)
owner_desk = application.getUserDesk(user=owner)
owner_desk_items = owner_desk.item_list
owner_desk_items.append(item_id)
owner_desk.update_record(item_list=owner_desk_items)
# remove desk from org
org = db(
db.organization.desks.contains(desk.id)
).select().first()
desk_list = org.desks
desk_list.remove(desk.id)
org.update_record(desks=desk_list)
# delete the desk from db.
del db.desk[desk.id]
# cleanup context
session.desk_id = None
# go to org view
redirect(URL('org','view', args=[org.id]))
return locals()
def item_list():
"""Show the list of items in this desk"""
desk = db.desk(request.args(0))
if desk.id == application.getUserDesk().id:
session.org_id = None
session.desk_id = desk.id
return locals()
def index():
"""Show the list of items in this desk"""
desk = db.desk(request.args(0))
if desk.id == application.getUserDesk().id:
session.org_id = None
session.desk_id = desk.id
# used to mark items for package creation
session.marked_items = []
return locals()
def index():
"""Show the list of items in this desk"""
desk = db.desk(request.args(0))
if desk.id == application.getUserDesk().id:
session.org_id = None
session.desk_id = desk.id
if session.marked_items is None:
session.marked_items = []
return locals()
def edit():
desk = db.desk(request.args(0))
session.desk_id = desk.id
db.desk.item_list.readable = False
db.desk.item_list.writable = False
form = SQLFORM(db.desk, record=desk, showid=False)
if form.process().accepted:
redirect(URL('index', args=[desk.id]))
return locals()
def edit():
desk = db.desk(request.args(0))
session.desk_id = desk.id
db.desk.item_list.readable = False
db.desk.item_list.writable = False
form = SQLFORM(db.desk, record=desk, showid=False)
if form.process().accepted:
redirect(URL('index', args=[desk.id]))
return locals()
def item_list():
"""Show the list of items in this desk"""
desk = db.desk(request.args(0))
if desk.id == application.getUserDesk().id:
session.org_id = None
session.desk_id = desk.id
if not request.vars.item_per_load:
item_per_load = 5
else:
item_per_load = int(request.vars.item_per_load)
# make a query and load the items
item_list = db(db.item.id.belongs(desk.item_list)).select(
orderby=[~db.item.created_on],
limitby=(0, item_per_load+1)
)
return locals()
def users():
desk = db.desk(request.args(0))
session.desk_id = desk.id
org = db.organization(session.org_id)
if request.args(1):
my_user = db.auth_user(request.args(1))
fld_read_desk = Field('read_desk', 'boolean')
fld_read_desk.label = T("Read '%s' content", (desk.name, ))
fld_read_desk.comment = T(
"Allow the user read only access to the desk item list.")
fld_read_desk.default = auth.has_permission('read', db.desk, desk.id,
my_user.id)
fld_update_items = Field('update_items', 'boolean')
fld_update_items.label = T("Read/Update items in '%s'", (desk.name, ))
fld_update_items.comment = T(
"Allow the user make modifications to the items in the desk.")
fld_update_items.default = auth.has_permission('update_items', db.desk,
desk.id, my_user.id)
fld_push_items = Field('push_items', 'boolean')
fld_push_items.label = T("Push items into '%s'", (desk.name, ))
fld_push_items.comment = T(
"""Allow the user move items into the desk.""")
fld_push_items.default = auth.has_permission('push_items', db.desk,
desk.id, my_user.id)
fld_update_desk = Field('update_desk', 'boolean')
fld_update_desk.label = T("Update/Manage '%s'", (desk.name, ))
fld_update_desk.comment = T("""
Allow the user to manage/administrate this desk. Use with caution.
""")
fld_update_desk.default = auth.has_permission('update', db.desk,
desk.id, my_user.id)
form = SQLFORM.factory(fld_read_desk,
fld_update_items,
fld_push_items,
fld_update_desk,
table_name='desk_perms')
if form.process().accepted:
if form.vars.read_desk:
# give perm
auth.add_permission(auth.user_group(my_user.id), 'read',
db.desk, desk.id)
else:
auth.del_permission(auth.user_group(my_user.id), 'read',
db.desk, desk.id)
if form.vars.update_items:
# give perm
auth.add_permission(auth.user_group(my_user.id),
'update_items', db.desk, desk.id)
else:
auth.del_permission(auth.user_group(my_user.id),
'update_items', db.desk, desk.id)
if form.vars.push_items:
# give perm
auth.add_permission(auth.user_group(my_user.id), 'push_items',
db.desk, desk.id)
else:
auth.del_permission(auth.user_group(my_user.id), 'push_items',
db.desk, desk.id)
if form.vars.update_desk:
# give perm
auth.add_permission(auth.user_group(my_user.id), 'update_desk',
db.desk, desk.id)
else:
auth.del_permission(auth.user_group(my_user.id), 'update_desk',
db.desk, desk.id)
redirect(URL('desk', 'users', args=[desk.id]))
response.view = "desk/user_perms.html"
else:
# select user view
query = (db.auth_user.id > 0)
query &= (db.auth_user.id.belongs(org.users))
my_users = db(query).select()
return locals()
def users():
desk = db.desk(request.args(0))
session.desk_id = desk.id
org = db.organization(session.org_id)
if request.args(1):
my_user = db.auth_user(request.args(1))
fld_read_desk = Field('read_desk', 'boolean')
fld_read_desk.label = T("Read '%s' content", (desk.name,))
fld_read_desk.comment = T(
"Allow the user read only access to the desk item list.")
fld_read_desk.default = auth.has_permission(
'read', db.desk, desk.id, my_user.id)
fld_update_items = Field('update_items', 'boolean')
fld_update_items.label = T("Read/Update items in '%s'", (desk.name,))
fld_update_items.comment = T(
"Allow the user make modifications to the items in the desk.")
fld_update_items.default = auth.has_permission(
'update_items', db.desk, desk.id, my_user.id)
fld_push_items = Field('push_items', 'boolean')
fld_push_items.label = T("Push items into '%s'", (desk.name,))
fld_push_items.comment = T(
"""Allow the user move items into the desk."""
)
fld_push_items.default = auth.has_permission(
'push_items', db.desk, desk.id, my_user.id)
fld_update_desk = Field('update_desk', 'boolean')
fld_update_desk.label = T("Update/Manage '%s'", (desk.name,))
fld_update_desk.comment = T(
"""
Allow the user to manage/administrate this desk. Use with caution.
"""
)
fld_update_desk.default = auth.has_permission(
'update', db.desk, desk.id, my_user.id)
form = SQLFORM.factory(
fld_read_desk,
fld_update_items,
fld_push_items,
fld_update_desk,
table_name='desk_perms'
)
if form.process().accepted:
if form.vars.read_desk:
# give perm
auth.add_permission(
auth.user_group(my_user.id), 'read', db.desk, desk.id)
else:
auth.del_permission(
auth.user_group(my_user.id), 'read', db.desk, desk.id)
if form.vars.update_items:
# give perm
auth.add_permission(
auth.user_group(my_user.id), 'update_items', db.desk,
desk.id)
else:
auth.del_permission(
auth.user_group(my_user.id), 'update_items', db.desk,
desk.id)
if form.vars.push_items:
# give perm
auth.add_permission(
auth.user_group(my_user.id), 'push_items', db.desk,
desk.id)
else:
auth.del_permission(
auth.user_group(my_user.id), 'push_items', db.desk,
desk.id)
if form.vars.update_desk:
# give perm
auth.add_permission(
auth.user_group(my_user.id), 'update_desk', db.desk,
desk.id)
else:
auth.del_permission(
auth.user_group(my_user.id), 'update_desk', db.desk,
desk.id)
redirect(URL('desk', 'users', args=[desk.id]))
response.view = "desk/user_perms.html"
else:
# select user view
query = (db.auth_user.id > 0)
query &= (db.auth_user.id.belongs(org.users))
my_users = db(query).select()
return locals()