Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
E
edx-platform
Overview
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
edx
edx-platform
Commits
d43386a0
Commit
d43386a0
authored
May 21, 2014
by
Nimisha Asthagiri
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Added asserts to ensure course_ids are course key objects.
parent
bef8134e
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
9 additions
and
5 deletions
+9
-5
lms/djangoapps/django_comment_client/permissions.py
+9
-5
No files found.
lms/djangoapps/django_comment_client/permissions.py
View file @
d43386a0
...
...
@@ -3,8 +3,9 @@ Module for checking permissions with the comment_client backend
"""
import
logging
from
types
import
NoneType
from
django.core
import
cache
from
xmodule.modulestore.keys
import
CourseKey
CACHE
=
cache
.
get_cache
(
'default'
)
CACHE_LIFESPAN
=
60
...
...
@@ -15,6 +16,7 @@ def cached_has_permission(user, permission, course_id=None):
Call has_permission if it's not cached. A change in a user's role or
a role's permissions will only become effective after CACHE_LIFESPAN seconds.
"""
assert
isinstance
(
course_id
,
(
NoneType
,
CourseKey
))
key
=
u"permission_{user_id:d}_{course_id}_{permission}"
.
format
(
user_id
=
user
.
id
,
course_id
=
course_id
,
permission
=
permission
)
val
=
CACHE
.
get
(
key
,
None
)
...
...
@@ -25,6 +27,7 @@ def cached_has_permission(user, permission, course_id=None):
def
has_permission
(
user
,
permission
,
course_id
=
None
):
assert
isinstance
(
course_id
,
(
NoneType
,
CourseKey
))
for
role
in
user
.
roles
.
filter
(
course_id
=
course_id
):
if
role
.
has_permission
(
permission
):
return
True
...
...
@@ -34,7 +37,7 @@ def has_permission(user, permission, course_id=None):
CONDITIONS
=
[
'is_open'
,
'is_author'
]
def
check_condition
(
user
,
condition
,
course_id
,
data
):
def
_
check_condition
(
user
,
condition
,
course_id
,
data
):
def
check_open
(
user
,
condition
,
course_id
,
data
):
try
:
return
data
and
not
data
[
'content'
][
'closed'
]
...
...
@@ -55,7 +58,7 @@ def check_condition(user, condition, course_id, data):
return
handlers
[
condition
](
user
,
condition
,
course_id
,
data
)
def
check_conditions_permissions
(
user
,
permissions
,
course_id
,
**
kwargs
):
def
_
check_conditions_permissions
(
user
,
permissions
,
course_id
,
**
kwargs
):
"""
Accepts a list of permissions and proceed if any of the permission is valid.
Note that ["can_view", "can_edit"] will proceed if the user has either
...
...
@@ -66,7 +69,7 @@ def check_conditions_permissions(user, permissions, course_id, **kwargs):
def
test
(
user
,
per
,
operator
=
"or"
):
if
isinstance
(
per
,
basestring
):
if
per
in
CONDITIONS
:
return
check_condition
(
user
,
per
,
course_id
,
kwargs
)
return
_
check_condition
(
user
,
per
,
course_id
,
kwargs
)
return
cached_has_permission
(
user
,
per
,
course_id
=
course_id
)
elif
isinstance
(
per
,
list
)
and
operator
in
[
"and"
,
"or"
]:
results
=
[
test
(
user
,
x
,
operator
=
"and"
)
for
x
in
per
]
...
...
@@ -107,8 +110,9 @@ VIEW_PERMISSIONS = {
def
check_permissions_by_view
(
user
,
course_id
,
content
,
name
):
assert
isinstance
(
course_id
,
CourseKey
)
try
:
p
=
VIEW_PERMISSIONS
[
name
]
except
KeyError
:
logging
.
warning
(
"Permission for view named
%
s does not exist in permissions.py"
%
name
)
return
check_conditions_permissions
(
user
,
p
,
course_id
,
content
=
content
)
return
_
check_conditions_permissions
(
user
,
p
,
course_id
,
content
=
content
)
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment