def edit(self, id): c.review = Review.find_by_id(id) redirect_to( h.url_for(controller='proposal', id=c.review.proposal.id, action='review'))
def delete(self, id): c.review = Review.find_by_id(id) if c.review.reviewer.id != h.signed_in_person().id: # Raise a no_auth error h.auth.no_role() return render('/review/confirm_delete.mako')
def delete(self, id): c.review = Review.find_by_id(id) if c.review.reviewer.id != h.signed_in_person().id: # Raise a no_auth error h.auth.no_role() return render('/review/confirm_delete.mako')
def _delete(self, id): c.review = Review.find_by_id(id) if c.review.reviewer.id != h.signed_in_person().id: # Raise a no_auth error h.auth.no_role() meta.Session.delete(c.review) meta.Session.commit() h.flash("Review Deleted") redirect_to(controller='review', action='index')
def _delete(self, id): c.review = Review.find_by_id(id) if c.review.reviewer.id != h.signed_in_person().id: # Raise a no_auth error h.auth.no_role() meta.Session.delete(c.review) meta.Session.commit() h.flash("Review Deleted") redirect_to(controller='review', action='index')
def view(self, id): c.review = Review.find_by_id(id) # TODO: currently not enough (see TODOs in model/proposal.py) #if not h.auth.authorized(h.auth.has_organiser_role): # # You can't review your own proposal # for person in c.review.proposal.people: # if person.id == h.signed_in_person().id: # h.auth.no_role() if c.review is None: redirect_to(action='index') return render('review/view.mako')
def view(self, id): c.review = Review.find_by_id(id) # TODO: currently not enough (see TODOs in model/proposal.py) #if not h.auth.authorized(h.auth.has_organiser_role): # # You can't review your own proposal # for person in c.review.proposal.people: # if person.id == h.signed_in_person().id: # h.auth.no_role() if c.review is None: redirect_to(action='index') return render('review/view.mako')
def edit(self, id): c.review = Review.find_by_id(id) redirect_to(h.url_for(controller='proposal', id=c.review.proposal.id, action='review'))