def add_permission(auth_user: AuthUser, username: str, company_id: str, ignore_auth_user=False): if not ignore_auth_user and auth_user.username not in admin_list: return {'error': 'unauthorized'} cla.log.info('company ({}) added for user ({}) by {}'.format( company_id, username, auth_user.username)) company = Company() try: company.load(company_id) except Exception as err: print('Unable to update company permission: {}'.format(err)) return {'error': str(err)} company.add_company_acl(username) event_data = f'Permissions added to user {username} for Company {company.get_company_name()}' Event.create_event( event_data=event_data, event_summary=event_data, event_type=EventType.AddCompanyPermission, event_company_id=company_id, contains_pii=True, ) company.save()
def add_permission(auth_user: AuthUser, username: str, company_id: str, ignore_auth_user=False): fn = 'controllers.company.add_permission' if not ignore_auth_user and auth_user.username not in admin_list: return {'error': 'unauthorized'} cla.log.info( f'{fn} - company ({company_id}) added for user ({username}) by {auth_user.username}' ) company = Company() try: company.load(company_id) except Exception as err: cla.log.warning(f'{fn} - unable to update company permission: {err}') return {'error': str(err)} company.add_company_acl(username) event_data = f'Added to user {username} to Company {company.get_company_name()} permissions list.' Event.create_event( event_data=event_data, event_summary=event_data, event_type=EventType.AddCompanyPermission, event_company_id=company_id, contains_pii=True, ) company.save()
def add_permission(auth_user: AuthUser, username: str, company_id: str, ignore_auth_user=False): if not ignore_auth_user and auth_user.username not in admin_list: return {'error': 'unauthorized'} cla.log.info('company ({}) added for user ({}) by {}'.format(company_id, username, auth_user.username)) company = Company() try: company.load(company_id) except Exception as err: print('Unable to update company permission: {}'.format(err)) return {'error': str(err)} company.add_company_acl(username) company.save()
def invite_cla_manager(contributor_id, contributor_name, contributor_email, cla_manager_name, cla_manager_email, project_name, company_name): """ Sends email to the specified CLA Manager to sign up through the Corporate console and adds the requested user to the Approved List request queue. :param contributor_id: The id of the user inviting the CLA Manager :param contributor_name: The name of the user inviting the CLA Manager :param contributor_email: The email address that this user wants to be added to the Approved List. Must exist in the user's list of emails. :param cla_manager_name: The name of the CLA manager :param cla_manager_email: The email address of the CLA manager :param project_name: The name of the project :param company_name: The name of the organization/company """ user = User() try: user.load(contributor_id) except DoesNotExist as err: msg = f'unable to load user by id: {contributor_id} for inviting company admin - error: {err}' cla.log.warning(msg) return { 'errors': { 'user_id': contributor_id, 'message': msg, 'error': str(err) } } project = Project() try: project.load_project_by_name(project_name) except DoesNotExist as err: msg = f'unable to load project by name: {project_name} for inviting company admin - error: {err}' cla.log.warning(msg) return { 'errors': { 'project_name': project_name, 'message': msg, 'error': str(err) } } company = Company() try: company.load_company_by_name(company_name) except DoesNotExist as err: msg = f'unable to load company by name: {company_name} - error: {err}' cla.log.warning(msg) company.set_company_id(str(uuid.uuid4())) company.set_company_name(company_name) company.save() # Add user lfusername if exists username = None if user.get_lf_username(): username = user.get_lf_username() elif user.get_user_name(): username = user.get_user_name() if username: company.add_company_acl(username) company.save() # create company invite company_invite = CompanyInvite() company_invite.set_company_invite_id(str(uuid.uuid4())) company_invite.set_requested_company_id(company.get_company_id()) company_invite.set_user_id(user.get_user_id()) company_invite.save() # We'll use the user's provided contributor name - if not provided use what we have in the DB if contributor_name is None: contributor_name = user.get_user_name() log_msg = ( f'sent email to CLA Manager: {cla_manager_name} with email {cla_manager_email} ' f'for project {project_name} and company {company_name} ' f'to user {contributor_name} with email {contributor_email}') # Send email to the admin. set account_exists=False since the admin needs to sign up through the Corporate Console. cla.log.info(log_msg) send_email_to_cla_manager(project, contributor_name, contributor_email, cla_manager_name, cla_manager_email, company_name, False) # update ccla_whitelist_request ccla_whitelist_request = CCLAWhitelistRequest() ccla_whitelist_request.set_request_id(str(uuid.uuid4())) ccla_whitelist_request.set_company_name(company_name) ccla_whitelist_request.set_project_name(project_name) ccla_whitelist_request.set_user_github_id(contributor_id) ccla_whitelist_request.set_user_github_username(contributor_name) ccla_whitelist_request.set_user_emails(set([contributor_email])) ccla_whitelist_request.set_request_status("pending") ccla_whitelist_request.save() Event.create_event( event_user_id=contributor_id, event_project_name=project_name, event_data=log_msg, event_summary=log_msg, event_type=EventType.InviteAdmin, contains_pii=True, )