def alloc_user(): for i in g.data['roles']: if not g.user.restrict_permission(Role.get_by_id(i).permission): return falseReturn(msg='您无法赋予他人权限不小于自己的角色') if not g.user.restrict_functions(Role.get_by_id(i).allow_functions): return falseReturn(msg='您无法赋予他人权能不在自己范围内的角色') u = User.get_by_id(g.data['id']) u.change_role(g.data['roles']) return trueReturn()
def decorated_function(*args, **kwargs): token = None if 'Authorization' in request.headers: print("login_required_jwt executed") token = request.headers['Authorization'].split(" ")[0] if not token or BlackListedToken.is_black_listed(token): return make_response(jsonify({ 'status': 'failed', 'message': 'Provide a valid auth token. Log in again please' })), 403 user_id = AuthToken.decode_auth_token(token) current_user = User.get_by_id(user_id) return f(current_user, *args, **kwargs)
def generate_tab_details(current_user, tab_id): tab_transactions = UserTabTransactionStatus.get_user_transaction_data( current_user.id, tab_id) tab = Tab.get_by_id(tab_id) transaction_summary = dict() transaction_summary['tab_name'] = tab.name transaction_summary['balance'] = TabUserStatus.get_user_tab_status( tab_id, current_user.id).balance transaction_summary['transactions'] = [] for t in tab_transactions: tab_transaction, user_transaction_status = t transaction_data = { 'amount': tab_transaction.amount, 'username': User.get_by_id(tab_transaction.created_by_id).username, 'transaction_type': tab_transaction.transaction_type.name, 'transaction_status': tab_transaction.status.name, 'creation_time': tab_transaction.creation_time.strftime("%d-%m-%Y"), 'tab_transaction_id': tab_transaction.id, 'user_transaction_id': user_transaction_status.id, 'user_transaction_status': user_transaction_status.status.name } transaction_summary['transactions'].append(transaction_data) return transaction_summary
def change_routine(): # 永久调班 if int(g.data['signtime']) not in range(0, 35): return falseReturn(msg='值班时间段设置不合法') u = User.get_by_id(g.data['user']) Routine.objects(user=u).first().change_signtime(g.data['signtime']) return trueReturn()
def rename_user(): u = User.get_by_id(g.data['id']) if not g.user.restrict_permission(u.max_permission()): return falseReturn(msg='您无法重命名权限不小于自己的用户') u.rename(g.data['name']) return trueReturn()
def remove_user(): u = User.get_by_id(g.data['id']) if not g.user.restrict_permission(u.max_permission()): return falseReturn(msg='您无法删除权限不小于自己的用户') u.delete() return trueReturn()
def alloc_user(): u = User.get_by_id(g.data['id']) u.change_role(g.data['roles']) return trueReturn()
def rename_user(): User.get_by_id(g.data['id']).rename(g.data['name']) return trueReturn()
def remove_user(): User.get_by_id(g.data['id']).delete() return trueReturn()