bornhack-website/src/utils/mixins.py

from django.contrib import messages
from django.contrib.auth.mixins import PermissionRequiredMixin, UserPassesTestMixin
from django.http import HttpResponseForbidden


class StaffMemberRequiredMixin(object):
    """
    A CBV mixin for when a view should only be permitted for staff users
    """

    def dispatch(self, request, *args, **kwargs):
        # only permit staff users
        if not request.user.is_staff:
            messages.error(request, "No thanks")
            return HttpResponseForbidden()

        # continue with the request
        return super().dispatch(request, *args, **kwargs)


class RaisePermissionRequiredMixin(PermissionRequiredMixin):
    """
    A subclass of PermissionRequiredMixin which raises an exception to return 403 rather than a redirect to the login page
    We use this to avoid a redirect loop since our login page redirects back to the ?next= url when a user is logged in...
    """

    raise_exception = True


class UserIsObjectOwnerMixin(UserPassesTestMixin):
    def test_func(self):
        return self.get_object().user == self.request.user
working on #232, this commit changes backoffice to be camp specific (although many of the actual functions are camp independent). Add backoffice/mixins.py with BackofficeViewMixin to keep it DRY. Add backoffice views to manage proposals. Move SpeakerProposal and EventProposal detail template to includes to they can be used from backoffice. Rename our commonmark templatetags so the names are more intuitive. 2018-06-03 13:34:04 +00:00			`from django.contrib import messages`
Event feedback (#451) * Event feedback functionality and related commits: * blackness and isort and flake8 - this branch does not have pre-commit so I forgot :/ * finish backoffice management of eventfeedback * add username to eventfeedback detail panel when viewed in backoffice * Add feedback url to elm schedule. Fix access when user is anonymous. Remove print statement. * one prefetch_related call to rule them all Co-authored-by: Víðir Valberg Guðmundsson <valberg@orn.li> 2020-02-22 13:50:09 +00:00			`from django.contrib.auth.mixins import PermissionRequiredMixin, UserPassesTestMixin`
add flake8 and isort to pre-commit config, make flake8 and isort happy (#441) * add flake8 to pre-commit config, and fixup many things to make flake8 happy * add isort and sort all imports, add to pre-commit and requirements 2020-02-12 12:10:41 +00:00			`from django.http import HttpResponseForbidden`
working on #232, this commit changes backoffice to be camp specific (although many of the actual functions are camp independent). Add backoffice/mixins.py with BackofficeViewMixin to keep it DRY. Add backoffice views to manage proposals. Move SpeakerProposal and EventProposal detail template to includes to they can be used from backoffice. Rename our commonmark templatetags so the names are more intuitive. 2018-06-03 13:34:04 +00:00

			`class StaffMemberRequiredMixin(object):`
			`"""`
			`A CBV mixin for when a view should only be permitted for staff users`
			`"""`
Blackness. 2019-06-16 12:32:24 +00:00
working on #232, this commit changes backoffice to be camp specific (although many of the actual functions are camp independent). Add backoffice/mixins.py with BackofficeViewMixin to keep it DRY. Add backoffice views to manage proposals. Move SpeakerProposal and EventProposal detail template to includes to they can be used from backoffice. Rename our commonmark templatetags so the names are more intuitive. 2018-06-03 13:34:04 +00:00			`def dispatch(self, request, args, *kwargs):`
			`# only permit staff users`
			`if not request.user.is_staff:`
			`messages.error(request, "No thanks")`
			`return HttpResponseForbidden()`

			`# continue with the request`
			`return super().dispatch(request, args, *kwargs)`

WIP Reimbursement feature (#278) * Almost done, need the send to economic part. * Add a way to approve/reject an reimbursement and send mails accordingly. * finish work on custom invoice address * add textfield notes to Order for internal orga notes about the order * Almost done, need the send to economic part. * Add a way to approve/reject an reimbursement and send mails accordingly. * economy commit of doom.. replace reimbursement app with an economy app, add Expense and Reimbursement models, add management of expenses and reimbursements to backoffice. Rework and cleanup permissions stuff, add Camp.Permissions pseudo model to hold all our non-model permissions. still experimental, expect rough edges, but basic functionality should work. 2018-08-29 22:52:32 +00:00
			`class RaisePermissionRequiredMixin(PermissionRequiredMixin):`
			`"""`
			`A subclass of PermissionRequiredMixin which raises an exception to return 403 rather than a redirect to the login page`
			`We use this to avoid a redirect loop since our login page redirects back to the ?next= url when a user is logged in...`
			`"""`

Blackness. 2019-06-16 12:32:24 +00:00			`raise_exception = True`
Event feedback (#451) * Event feedback functionality and related commits: * blackness and isort and flake8 - this branch does not have pre-commit so I forgot :/ * finish backoffice management of eventfeedback * add username to eventfeedback detail panel when viewed in backoffice * Add feedback url to elm schedule. Fix access when user is anonymous. Remove print statement. * one prefetch_related call to rule them all Co-authored-by: Víðir Valberg Guðmundsson <valberg@orn.li> 2020-02-22 13:50:09 +00:00

			`class UserIsObjectOwnerMixin(UserPassesTestMixin):`
			`def test_func(self):`
			`return self.get_object().user == self.request.user`