def maybeRestrictToTeam(self, request):
restrict_to_team = config.launchpad.restrict_to_team
if not restrict_to_team:
return
restrictedlogin = '******'
restrictedinfo = '+restricted-info'
# Always allow access to +restrictedlogin and +restrictedinfo.
traversal_stack = request.getTraversalStack()
if (traversal_stack == [restrictedlogin]
or traversal_stack == [restrictedinfo]):
return
principal = request.principal
team = getUtility(IPersonSet).getByName(restrict_to_team)
if team is None:
raise AssertionError('restrict_to_team "%s" not found' %
restrict_to_team)
elif not ITeam.providedBy(team):
raise AssertionError('restrict_to_team "%s" is not a team' %
restrict_to_team)
if IUnauthenticatedPrincipal.providedBy(principal):
location = '/%s' % restrictedlogin
else:
# We have a team we can work with.
user = IPerson(principal)
if (user.inTeam(team)
or user.inTeam(getUtility(ILaunchpadCelebrities).admin)):
return
else:
location = '/%s' % restrictedinfo
non_restricted_url = self.getNonRestrictedURL(request)
if non_restricted_url is not None:
location += '?production=%s' % urllib.quote(non_restricted_url)
request.response.setResult('')
request.response.redirect(location, temporary_if_possible=True)
# Quash further traversal.
request.setTraversalStack([])
def maybeRestrictToTeam(self, request):
restrict_to_team = config.launchpad.restrict_to_team
if not restrict_to_team:
return
restrictedlogin = '******'
restrictedinfo = '+restricted-info'
# Always allow access to +restrictedlogin and +restrictedinfo.
traversal_stack = request.getTraversalStack()
if (traversal_stack == [restrictedlogin] or
traversal_stack == [restrictedinfo]):
return
principal = request.principal
team = getUtility(IPersonSet).getByName(restrict_to_team)
if team is None:
raise AssertionError(
'restrict_to_team "%s" not found' % restrict_to_team)
elif not ITeam.providedBy(team):
raise AssertionError(
'restrict_to_team "%s" is not a team' % restrict_to_team)
if IUnauthenticatedPrincipal.providedBy(principal):
location = '/%s' % restrictedlogin
else:
# We have a team we can work with.
user = IPerson(principal)
if (user.inTeam(team) or
user.inTeam(getUtility(ILaunchpadCelebrities).admin)):
return
else:
location = '/%s' % restrictedinfo
non_restricted_url = self.getNonRestrictedURL(request)
if non_restricted_url is not None:
location += '?production=%s' % urllib.quote(non_restricted_url)
request.response.setResult('')
request.response.redirect(location, temporary_if_possible=True)
# Quash further traversal.
request.setTraversalStack([])
