def admin_new_role(): """ Renders the new role page """ role_db = RoleDB() if current_user.is_authenticated() and current_user.is_active(): all_activities = set() for m in role_db.get_roles(current_user): acts = role_db.get_activities(m.role_id) for act in acts: if acts[act]: all_activities.add(act) if 'new_role' in all_activities: role = role_db.create_temp_empty_role() if 'cancel' in request.form: return redirect(url_for('admin_role.admin_role_page')) elif 'submit' in request.form: rname = request.form.get('role_name', None) role.name = rname role.description = request.form.get('description', None) updated_acts = request.form.getlist('activities') ract = get_activity_dict(False) for a in updated_acts: ract[a] = True role = role_db.update_temp_role_activities(role, ract) if rname is not None and rname != '': r = role_db.get_role(rname) if r is None: try: role = role_db.add_role(role.name, role.description, ract) flash(_('Role "{0}" added.'.format(rname))) return redirect(url_for( 'admin_role.admin_role_page')) except DuplicateRole: flash(_('Role name "{0}" is already in use!'.format( rname)), 'error') return render_template('admin_role.html', role=role, state=get_state(), title=_('Edit Role'), cancel_button=_('Cancel'), submit_button=_('Submit'), can_edit_roles=True, activities=activities) else: return _not_auth() else: return _not_auth()
def admin_role_page(rid): """ Renders the role admin page """ user_db = UserDB() role_db = RoleDB() if current_user.is_authenticated() and current_user.is_active(): is_admin = user_db.in_group(current_user, mainApp.config['ADMIN_GROUP']) all_activities = set() for m in role_db.get_roles(current_user): acts = role_db.get_activities(m.role_id) for act in acts: if acts[act]: all_activities.add(act) can_view_roles = 'view_roles' in all_activities can_edit_roles = 'edit_roles' in all_activities if is_admin or can_view_roles: if rid is None: if request.method == 'POST': if 'delete' in request.form: rids = request.form.getlist('select') for rid in rids: try: role_db.delete_role(int(rid)) flash(_('Role with ID "{0}" deleted'.format( rid))) except RoleNotFound: flash(_('"{0}" role id not found!'.format( rid)), 'error') elif 'new' in request.form: return redirect(url_for('admin_role.admin_new_role')) roles = role_db.get_all_roles() return render_template('list_roles.html', roles=roles, state=get_state(), can_view_roles=can_view_roles, can_edit_roles=can_edit_roles, title=_('All Roles'), delete_button=_('Delete'), new_button=_('New'), cancel_button=_('Cancel'), activities=activities, del_title=_('Delete Roles(s)'), del_warn=_('Deleting roles is a permanent action. '\ 'Are you sure?')) else: if request.method == "POST": if 'cancel' in request.form: return redirect(url_for('admin_role.admin_role_page')) elif 'submit' in request.form: role = role_db.get_role(rid) if role is not None: role.name = request.form.get('role_name', role.name) role.description = request.form.get('description', role.description) updated_acts = request.form.getlist('activities') ract = get_activity_dict(False) for a in updated_acts: ract[a] = True role = role_db.update_temp_role_activities( role, ract) role_db.update_role(role) return redirect(url_for( 'admin_role.admin_role_page')) role = role_db.get_role(rid) if role is not None: return render_template('admin_role.html', role=role, state=get_state(), title=_('Edit Role'), cancel_button=_('Cancel'), submit_button=_('Submit'), can_edit_roles=True, activities=activities) else: return _not_auth() else: return _not_auth()