def alloc_user():
for i in g.data['roles']:
if not g.user.restrict_permission(Role.get_by_id(i).permission):
return falseReturn(msg='您无法赋予他人权限不小于自己的角色')
if not g.user.restrict_functions(Role.get_by_id(i).allow_functions):
return falseReturn(msg='您无法赋予他人权能不在自己范围内的角色')
u = User.get_by_id(g.data['id'])
u.change_role(g.data['roles'])
return trueReturn()
def decorated_function(*args, **kwargs):
token = None
if 'Authorization' in request.headers:
print("login_required_jwt executed")
token = request.headers['Authorization'].split(" ")[0]
if not token or BlackListedToken.is_black_listed(token):
return make_response(jsonify({
'status': 'failed',
'message': 'Provide a valid auth token. Log in again please'
})), 403
user_id = AuthToken.decode_auth_token(token)
current_user = User.get_by_id(user_id)
return f(current_user, *args, **kwargs)
def generate_tab_details(current_user, tab_id):
tab_transactions = UserTabTransactionStatus.get_user_transaction_data(
current_user.id, tab_id)
tab = Tab.get_by_id(tab_id)
transaction_summary = dict()
transaction_summary['tab_name'] = tab.name
transaction_summary['balance'] = TabUserStatus.get_user_tab_status(
tab_id, current_user.id).balance
transaction_summary['transactions'] = []
for t in tab_transactions:
tab_transaction, user_transaction_status = t
transaction_data = {
'amount': tab_transaction.amount,
'username': User.get_by_id(tab_transaction.created_by_id).username,
'transaction_type': tab_transaction.transaction_type.name,
'transaction_status': tab_transaction.status.name,
'creation_time':
tab_transaction.creation_time.strftime("%d-%m-%Y"),
'tab_transaction_id': tab_transaction.id,
'user_transaction_id': user_transaction_status.id,
'user_transaction_status': user_transaction_status.status.name
}
transaction_summary['transactions'].append(transaction_data)
return transaction_summary
def change_routine(): # 永久调班
if int(g.data['signtime']) not in range(0, 35):
return falseReturn(msg='值班时间段设置不合法')
u = User.get_by_id(g.data['user'])
Routine.objects(user=u).first().change_signtime(g.data['signtime'])
return trueReturn()
def rename_user():
u = User.get_by_id(g.data['id'])
if not g.user.restrict_permission(u.max_permission()):
return falseReturn(msg='您无法重命名权限不小于自己的用户')
u.rename(g.data['name'])
return trueReturn()
def remove_user():
u = User.get_by_id(g.data['id'])
if not g.user.restrict_permission(u.max_permission()):
return falseReturn(msg='您无法删除权限不小于自己的用户')
u.delete()
return trueReturn()
def alloc_user():
u = User.get_by_id(g.data['id'])
u.change_role(g.data['roles'])
return trueReturn()
def rename_user():
User.get_by_id(g.data['id']).rename(g.data['name'])
return trueReturn()
def remove_user():
User.get_by_id(g.data['id']).delete()
return trueReturn()
