def _inner(request, domain, *args, **kwargs): if not hasattr(request, "couch_user"): return domain_specific_login_redirect(request, domain) elif request.user.is_superuser or request.couch_user.has_permission(domain, permission, data=data): return view_func(request, domain, *args, **kwargs) else: return HttpResponseForbidden()
def _inner(request, domain, *args, **kwargs): if not hasattr(request, "couch_user"): return domain_specific_login_redirect(request, domain) elif request.user.is_superuser or permission_check(request.couch_user, domain): return view_func(request, domain, *args, **kwargs) else: raise PermissionDenied()
def _inner(request, domain, *args, **kwargs): if not hasattr(request, "couch_user"): return domain_specific_login_redirect(request, domain) elif request.user.is_superuser or permission_check( request.couch_user, domain): return view_func(request, domain, *args, **kwargs) else: raise PermissionDenied()
def _inner(request, domain, *args, **kwargs): if not hasattr(request, "couch_user"): return domain_specific_login_redirect(request, domain) elif request.user.is_superuser or request.couch_user.has_permission(domain, permission, data=data): return view_func(request, domain, *args, **kwargs) else: return HttpResponseForbidden(_("Sorry, you don't have permission to access that page! " "Contact your administrator if you believe this is a mistake."))
def _inner(request, domain, *args, **kwargs): if not hasattr(request, "couch_user"): return domain_specific_login_redirect(request, domain) elif request.user.is_superuser or permission_check(request.couch_user, domain): return view_func(request, domain, *args, **kwargs) else: if request.is_ajax(): return HttpResponse(_("Sorry, you don't have permission to do this action!"), status=403) raise PermissionDenied()
def _inner(request, domain, *args, **kwargs): if not hasattr(request, "couch_user"): return domain_specific_login_redirect(request, domain) elif request.user.is_superuser or request.couch_user.has_permission( domain, permission, data=data): return view_func(request, domain, *args, **kwargs) else: return HttpResponseForbidden( _("Sorry, you don't have permission to access that page! " "Contact your administrator if you believe this is a mistake." ))
def _inner(request, domain, *args, **kwargs): if not hasattr(request, "couch_user"): return domain_specific_login_redirect(request, domain) elif request.user.is_superuser or permission_check( request.couch_user, domain): return view_func(request, domain, *args, **kwargs) else: if request.is_ajax(): return HttpResponse(_( "Sorry, you don't have permission to do this action!"), status=403) raise PermissionDenied()
def _inner(request, domain, couch_user_id, *args, **kwargs): go_ahead = False if hasattr(request, "couch_user"): user = request.couch_user if user.is_superuser or user.user_id == couch_user_id or (hasattr(user, "is_domain_admin") and user.is_domain_admin()): go_ahead = True else: couch_user = CouchUser.get_by_user_id(couch_user_id) if not couch_user: raise Http404() if couch_user.is_commcare_user() and request.couch_user.can_edit_commcare_users(): go_ahead = True elif couch_user.is_web_user() and request.couch_user.can_edit_web_users(): go_ahead = True if go_ahead: return login_and_domain_required(view_func)(request, domain, couch_user_id, *args, **kwargs) else: return domain_specific_login_redirect(request, domain)
def _inner(request, domain, couch_user_id, *args, **kwargs): go_ahead = False if hasattr(request, "couch_user"): user = request.couch_user if user.is_superuser or user.user_id == couch_user_id or (hasattr( user, "is_domain_admin") and user.is_domain_admin()): go_ahead = True else: couch_user = CouchUser.get_by_user_id(couch_user_id) if not couch_user: raise Http404() if couch_user.is_commcare_user( ) and request.couch_user.can_edit_commcare_users(): go_ahead = True elif couch_user.is_web_user( ) and request.couch_user.can_edit_web_users(): go_ahead = True if go_ahead: return login_and_domain_required(view_func)(request, domain, couch_user_id, *args, **kwargs) else: return domain_specific_login_redirect(request, domain)