8
0
Fork 0
mirror of https://gitlab2.federez.net/re2o/re2o synced 2024-12-27 17:33:45 +00:00
re2o/users/views.py

1159 lines
35 KiB
Python
Raw Normal View History

2018-08-09 09:15:40 +00:00
# -*- mode: python; coding: utf-8 -*-
2017-01-15 23:01:18 +00:00
# Re2o est un logiciel d'administration développé initiallement au rezometz. Il
# se veut agnostique au réseau considéré, de manière à être installable en
# quelques clics.
#
# Copyright © 2017 Gabriel Détraz
# Copyright © 2017 Goulven Kermarec
# Copyright © 2017 Augustin Lemesle
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License along
# with this program; if not, write to the Free Software Foundation, Inc.,
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
2016-06-30 18:18:06 +00:00
# App de gestion des users pour re2o
2016-11-11 20:10:10 +00:00
# Goulven Kermarec, Gabriel Détraz, Lemesle Augustin
2016-06-30 18:18:06 +00:00
# Gplv2
2017-10-14 20:10:07 +00:00
"""
Module des views.
On définit les vues pour l'ajout, l'edition des users : infos personnelles,
mot de passe, etc
Permet aussi l'ajout, edition et suppression des droits, des bannissements,
des whitelist, des services users et des écoles
"""
from __future__ import unicode_literals
2017-10-26 15:58:41 +00:00
from django.urls import reverse
from django.shortcuts import get_object_or_404, render, redirect
from django.contrib import messages
2016-07-09 02:12:09 +00:00
from django.contrib.auth.decorators import login_required, permission_required
from django.db.models import ProtectedError, Count, Max
from django.utils import timezone
from django.db import transaction
from django.http import HttpResponse
from django.http import HttpResponseRedirect
from django.views.decorators.csrf import csrf_exempt
from rest_framework.renderers import JSONRenderer
2018-04-14 23:16:49 +00:00
from reversion import revisions as reversion
from cotisations.models import Facture, Paiement
2018-04-14 23:16:49 +00:00
from machines.models import Machine
2018-07-10 21:36:01 +00:00
from preferences.models import OptionalUser, GeneralOption, AssoOption
2018-04-14 23:16:49 +00:00
from re2o.views import form
from re2o.utils import (
all_has_access,
SortTable,
re2o_paginator
)
from re2o.acl import (
can_create,
can_edit,
can_delete_set,
can_delete,
can_view,
can_view_all,
can_change
)
from cotisations.utils import find_payment_method
2016-06-30 01:39:07 +00:00
2018-04-14 23:16:49 +00:00
from .serializers import MailingSerializer, MailingMemberSerializer
from .models import (
User,
Ban,
Whitelist,
School,
ListRight,
Request,
ServiceUser,
Adherent,
2017-11-28 18:41:14 +00:00
Club,
ListShell,
2018-08-01 11:06:25 +00:00
EMailAddress,
)
2018-04-14 23:16:49 +00:00
from .forms import (
BanForm,
WhitelistForm,
2018-08-01 11:06:25 +00:00
EMailAddressForm,
2018-07-30 15:00:41 +00:00
EmailSettingsForm,
DelSchoolForm,
DelListRightForm,
NewListRightForm,
StateForm,
SchoolForm,
ShellForm,
EditServiceUserForm,
ServiceUserForm,
ListRightForm,
AdherentForm,
ClubForm,
MassArchiveForm,
PassForm,
ResetPasswordForm,
2017-12-31 16:11:19 +00:00
ClubAdminandMembersForm,
GroupForm
)
2018-04-14 01:25:05 +00:00
2017-11-28 21:54:13 +00:00
@can_create(Adherent)
2016-06-30 18:18:06 +00:00
def new_user(request):
2017-10-14 20:10:07 +00:00
""" Vue de création d'un nouvel utilisateur,
envoie un mail pour le mot de passe"""
user = AdherentForm(request.POST or None, user=request.user)
GTU_sum_up = GeneralOption.get_cached_value('GTU_sum_up')
GTU = GeneralOption.get_cached_value('GTU')
if user.is_valid():
user = user.save()
user.reset_passwd_mail(request)
2017-10-14 20:10:07 +00:00
messages.success(request, "L'utilisateur %s a été crée, un mail\
pour l'initialisation du mot de passe a été envoyé" % user.pseudo)
2017-10-26 15:58:41 +00:00
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(user.id)}
))
return form(
{
'userform': user,
'GTU_sum_up': GTU_sum_up,
'GTU': GTU,
'showCGU': True,
'action_name': 'Créer un utilisateur'
},
'users/user.html',
request
)
2017-10-14 20:10:07 +00:00
@login_required
2017-11-28 21:54:13 +00:00
@can_create(Club)
def new_club(request):
""" Vue de création d'un nouveau club,
envoie un mail pour le mot de passe"""
club = ClubForm(request.POST or None, user=request.user)
if club.is_valid():
club = club.save(commit=False)
club.save()
club.reset_passwd_mail(request)
messages.success(request, "L'utilisateur %s a été crée, un mail\
pour l'initialisation du mot de passe a été envoyé" % club.pseudo)
2017-10-26 15:58:41 +00:00
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(club.id)}
))
return form(
{'userform': club, 'showCGU': False, 'action_name': 'Créer un club'},
'users/user.html',
request
)
@login_required
@can_edit(Club)
2018-04-15 01:00:05 +00:00
def edit_club_admin_members(request, club_instance, **_kwargs):
"""Vue d'edition de la liste des users administrateurs et
membres d'un club"""
2018-04-14 01:25:05 +00:00
club = ClubAdminandMembersForm(
request.POST or None,
instance=club_instance
)
if club.is_valid():
2018-03-31 22:06:44 +00:00
if club.changed_data:
club.save()
messages.success(request, "Le club a bien été modifié")
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(club_instance.id)}
))
return form(
{
'userform': club,
'showCGU': False,
'action_name': 'Editer les admin et membres'
},
'users/user.html',
request
)
2016-07-08 10:35:53 +00:00
@login_required
@can_edit(User)
def edit_info(request, user, userid):
2017-10-14 20:10:07 +00:00
""" Edite un utilisateur à partir de son id,
si l'id est différent de request.user, vérifie la
possession du droit cableur """
if user.is_class_adherent:
2018-04-14 23:16:49 +00:00
user_form = AdherentForm(
request.POST or None,
instance=user.adherent,
user=request.user
)
2018-04-14 23:16:49 +00:00
else:
user_form = ClubForm(
request.POST or None,
instance=user.club,
user=request.user
)
2018-04-14 23:16:49 +00:00
if user_form.is_valid():
if user_form.changed_data:
user_form.save()
2018-03-31 22:06:44 +00:00
messages.success(request, "L'user a bien été modifié")
2017-10-26 15:58:41 +00:00
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(userid)}
))
return form(
2018-04-14 23:16:49 +00:00
{'userform': user_form, 'action_name': "Editer l'utilisateur"},
2018-04-14 01:25:05 +00:00
'users/user.html',
request
)
2017-10-14 20:10:07 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_edit(User, 'state')
def state(request, user, userid):
2018-07-20 10:59:24 +00:00
""" Change the state (active/unactive/archived) of a user"""
2018-04-14 23:16:49 +00:00
state_form = StateForm(request.POST or None, instance=user)
if state_form.is_valid():
if state_form.changed_data:
state_form.save()
2018-03-31 22:06:44 +00:00
messages.success(request, "Etat changé avec succès")
2017-10-26 15:58:41 +00:00
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(userid)}
))
return form(
2018-04-14 23:16:49 +00:00
{'userform': state_form, 'action_name': "Editer l'état"},
2018-04-14 01:25:05 +00:00
'users/user.html',
request
)
2017-10-14 20:10:07 +00:00
2017-12-31 16:11:19 +00:00
@login_required
2017-12-31 19:53:38 +00:00
@can_edit(User, 'groups')
2017-12-31 16:11:19 +00:00
def groups(request, user, userid):
2018-04-14 23:16:49 +00:00
""" View to edit the groups of a user """
group_form = GroupForm(request.POST or None,
instance=user, user=request.user)
2018-04-14 23:16:49 +00:00
if group_form.is_valid():
if group_form.changed_data:
group_form.save()
2018-03-31 22:06:44 +00:00
messages.success(request, "Groupes changés avec succès")
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(userid)}
))
2018-04-14 01:25:05 +00:00
return form(
2018-04-14 23:16:49 +00:00
{'userform': group_form, 'action_name': 'Editer les groupes'},
2018-04-14 01:25:05 +00:00
'users/user.html',
request
)
2017-12-31 16:11:19 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_edit(User, 'password')
def password(request, user, userid):
2016-11-21 00:49:45 +00:00
""" Reinitialisation d'un mot de passe à partir de l'userid,
pour self par défaut, pour tous sans droit si droit cableur,
pour tous si droit bureau """
u_form = PassForm(request.POST or None, instance=user, user=request.user)
if u_form.is_valid():
2018-03-31 22:06:44 +00:00
if u_form.changed_data:
u_form.save()
messages.success(request, "Le mot de passe a changé")
return redirect(reverse(
2018-04-14 01:25:05 +00:00
'users:profil',
2018-04-14 23:16:49 +00:00
kwargs={'userid': str(userid)}
))
2018-04-14 01:25:05 +00:00
return form(
{'userform': u_form, 'action_name': 'Changer le mot de passe'},
'users/user.html',
request
)
2016-07-01 22:35:44 +00:00
2017-10-14 20:10:07 +00:00
2017-12-31 16:11:19 +00:00
@login_required
@can_edit(User, 'groups')
2018-04-15 01:00:05 +00:00
def del_group(request, user, listrightid, **_kwargs):
2018-04-14 23:16:49 +00:00
""" View used to delete a group """
user.groups.remove(ListRight.objects.get(id=listrightid))
user.save()
messages.success(request, "Droit supprimé à %s" % user)
return HttpResponseRedirect(request.META.get('HTTP_REFERER'))
2017-12-31 16:11:19 +00:00
2018-05-03 08:26:17 +00:00
@login_required
2018-05-03 12:22:52 +00:00
@can_edit(User, 'is_superuser')
2018-05-03 08:26:17 +00:00
def del_superuser(request, user, **_kwargs):
"""Remove the superuser right of an user."""
user.is_superuser = False
user.save()
messages.success(request, "%s n'est plus superuser" % user)
return HttpResponseRedirect(request.META.get('HTTP_REFERER'))
2017-06-18 12:59:53 +00:00
@login_required
2017-11-28 21:54:13 +00:00
@can_create(ServiceUser)
2017-06-18 12:59:53 +00:00
def new_serviceuser(request):
""" Vue de création d'un nouvel utilisateur service"""
user = ServiceUserForm(request.POST or None)
if user.is_valid():
user.save()
2017-10-14 20:10:07 +00:00
messages.success(
request,
"L'utilisateur a été crée"
2017-10-14 20:10:07 +00:00
)
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-serviceusers'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': user, 'action_name': 'Créer un serviceuser'},
'users/user.html',
request
)
2017-06-18 12:59:53 +00:00
2017-10-14 20:10:07 +00:00
2017-06-18 12:59:53 +00:00
@login_required
@can_edit(ServiceUser)
2018-04-15 01:00:05 +00:00
def edit_serviceuser(request, serviceuser, **_kwargs):
""" Edit a ServiceUser """
2018-04-14 01:25:05 +00:00
serviceuser = EditServiceUserForm(
request.POST or None,
instance=serviceuser
)
2018-04-10 17:12:28 +00:00
if serviceuser.is_valid():
if serviceuser.changed_data:
serviceuser.save()
2017-06-18 12:59:53 +00:00
messages.success(request, "L'user a bien été modifié")
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-serviceusers'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': serviceuser, 'action_name': 'Editer un serviceuser'},
'users/user.html',
request
)
2017-06-18 12:59:53 +00:00
2017-10-14 20:10:07 +00:00
2017-06-18 12:59:53 +00:00
@login_required
@can_delete(ServiceUser)
2018-04-15 01:00:05 +00:00
def del_serviceuser(request, serviceuser, **_kwargs):
2017-10-14 20:10:07 +00:00
"""Suppression d'un ou plusieurs serviceusers"""
2017-06-18 12:59:53 +00:00
if request.method == "POST":
2018-04-10 17:12:28 +00:00
serviceuser.delete()
messages.success(request, "L'user a été détruit")
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-serviceusers'))
2017-10-14 20:10:07 +00:00
return form(
2018-04-01 18:44:23 +00:00
{'objet': serviceuser, 'objet_name': 'serviceuser'},
2017-10-14 20:10:07 +00:00
'users/delete.html',
request
)
2017-06-18 12:59:53 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_create(Ban)
@can_edit(User)
def add_ban(request, user, userid):
2017-10-14 20:10:07 +00:00
""" Ajouter un banissement, nécessite au moins le droit bofh
(a fortiori bureau)
2016-11-21 00:49:45 +00:00
Syntaxe : JJ/MM/AAAA , heure optionnelle, prend effet immédiatement"""
ban_instance = Ban(user=user)
ban = BanForm(request.POST or None, instance=ban_instance)
if ban.is_valid():
2018-04-14 23:16:49 +00:00
ban.save()
messages.success(request, "Bannissement ajouté")
2017-10-26 15:58:41 +00:00
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(userid)}
2017-10-26 15:58:41 +00:00
))
if user.is_ban():
messages.error(
request,
"Attention, cet utilisateur a deja un bannissement actif"
)
2018-04-14 01:25:05 +00:00
return form(
{'userform': ban, 'action_name': 'Ajouter un ban'},
'users/user.html',
request
)
2016-07-08 10:35:53 +00:00
@login_required
@can_edit(Ban)
2018-04-15 01:00:05 +00:00
def edit_ban(request, ban_instance, **_kwargs):
2017-10-14 20:10:07 +00:00
""" Editer un bannissement, nécessite au moins le droit bofh
(a fortiori bureau)
2016-11-21 00:49:45 +00:00
Syntaxe : JJ/MM/AAAA , heure optionnelle, prend effet immédiatement"""
ban = BanForm(request.POST or None, instance=ban_instance)
if ban.is_valid():
2018-03-31 22:06:44 +00:00
if ban.changed_data:
ban.save()
messages.success(request, "Bannissement modifié")
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': ban, 'action_name': 'Editer un ban'},
'users/user.html',
request
)
@login_required
@can_delete(Ban)
def del_ban(request, ban, **_kwargs):
""" Supprime un banissement"""
if request.method == "POST":
ban.delete()
messages.success(request, "Le banissement a été supprimé")
return redirect(reverse(
'users:profil',
kwargs={'userid': str(ban.user.id)}
))
return form(
{'objet': ban, 'objet_name': 'ban'},
'users/delete.html',
request
)
2017-10-14 20:10:07 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_create(Whitelist)
@can_edit(User)
def add_whitelist(request, user, userid):
2017-10-14 20:10:07 +00:00
""" Accorder un accès gracieux, temporaire ou permanent.
Need droit cableur
Syntaxe : JJ/MM/AAAA , heure optionnelle, prend effet immédiatement,
raison obligatoire"""
2016-07-04 18:04:11 +00:00
whitelist_instance = Whitelist(user=user)
2017-10-14 20:10:07 +00:00
whitelist = WhitelistForm(
request.POST or None,
instance=whitelist_instance
)
2016-07-04 18:04:11 +00:00
if whitelist.is_valid():
whitelist.save()
2016-07-04 18:04:11 +00:00
messages.success(request, "Accès à titre gracieux accordé")
2017-10-26 15:58:41 +00:00
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(userid)}
))
if user.is_whitelisted():
messages.error(
request,
"Attention, cet utilisateur a deja un accès gracieux actif"
)
2018-04-14 01:25:05 +00:00
return form(
{'userform': whitelist, 'action_name': 'Ajouter une whitelist'},
'users/user.html',
request
)
2016-07-04 18:04:11 +00:00
2017-10-14 20:10:07 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_edit(Whitelist)
2018-04-15 01:00:05 +00:00
def edit_whitelist(request, whitelist_instance, **_kwargs):
2017-10-14 20:10:07 +00:00
""" Editer un accès gracieux, temporaire ou permanent.
Need droit cableur
Syntaxe : JJ/MM/AAAA , heure optionnelle, prend effet immédiatement,
raison obligatoire"""
whitelist = WhitelistForm(
request.POST or None,
instance=whitelist_instance
)
2016-07-04 18:04:11 +00:00
if whitelist.is_valid():
2018-03-31 22:06:44 +00:00
if whitelist.changed_data:
whitelist.save()
messages.success(request, "Whitelist modifiée")
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': whitelist, 'action_name': 'Editer une whitelist'},
'users/user.html',
request
)
2016-07-04 18:04:11 +00:00
2017-10-14 20:10:07 +00:00
@login_required
@can_delete(Whitelist)
def del_whitelist(request, whitelist, **_kwargs):
""" Supprime un acces gracieux"""
if request.method == "POST":
whitelist.delete()
messages.success(request, "L'accés gracieux a été supprimé")
return redirect(reverse(
'users:profil',
kwargs={'userid': str(whitelist.user.id)}
))
return form(
{'objet': whitelist, 'objet_name': 'whitelist'},
'users/delete.html',
request
)
@login_required
2018-08-01 11:06:25 +00:00
@can_create(EMailAddress)
@can_edit(User)
2018-08-01 11:06:25 +00:00
def add_emailaddress(request, user, userid):
2018-07-30 15:00:41 +00:00
""" Create a new local email account"""
2018-08-01 11:06:25 +00:00
emailaddress_instance = EMailAddress(user=user)
emailaddress = EMailAddressForm(
request.POST or None,
2018-08-01 11:06:25 +00:00
instance=emailaddress_instance
)
2018-08-01 11:06:25 +00:00
if emailaddress.is_valid():
emailaddress.save()
2018-07-30 15:00:41 +00:00
messages.success(request, "Local email account created")
return redirect(reverse(
'users:profil',
kwargs={'userid': str(userid)}
))
return form(
2018-08-01 11:06:25 +00:00
{'userform': emailaddress,
2018-07-30 15:00:41 +00:00
'showCGU': False,
'action_name': 'Add a local email account'},
'users/user.html',
request
)
2018-07-30 15:00:41 +00:00
@login_required
2018-08-01 11:06:25 +00:00
@can_edit(EMailAddress)
def edit_emailaddress(request, emailaddress_instance, **_kwargs):
2018-07-30 15:00:41 +00:00
""" Edit a local email account"""
2018-08-01 11:06:25 +00:00
emailaddress = EMailAddressForm(
request.POST or None,
2018-08-01 11:06:25 +00:00
instance=emailaddress_instance
)
2018-08-01 11:06:25 +00:00
if emailaddress.is_valid():
if emailaddress.changed_data:
emailaddress.save()
2018-07-30 15:00:41 +00:00
messages.success(request, "Local email account modified")
2018-06-29 15:45:21 +00:00
return redirect(reverse(
'users:profil',
2018-08-01 11:06:25 +00:00
kwargs={'userid': str(emailaddress_instance.user.id)}
2018-06-29 15:45:21 +00:00
))
return form(
2018-08-01 11:06:25 +00:00
{'userform': emailaddress,
2018-07-30 15:00:41 +00:00
'showCGU': False,
'action_name': 'Edit a local email account'},
'users/user.html',
request
)
2018-07-30 15:00:41 +00:00
@login_required
2018-08-01 11:06:25 +00:00
@can_delete(EMailAddress)
def del_emailaddress(request, emailaddress, **_kwargs):
2018-07-30 15:00:41 +00:00
"""Delete a local email account"""
if request.method == "POST":
2018-08-01 11:06:25 +00:00
emailaddress.delete()
2018-07-30 15:00:41 +00:00
messages.success(request, "Local email account deleted")
return redirect(reverse(
'users:profil',
2018-08-01 11:06:25 +00:00
kwargs={'userid': str(emailaddress.user.id)}
2018-07-30 15:00:41 +00:00
))
return form(
2018-08-01 11:06:25 +00:00
{'objet': emailaddress, 'objet_name': 'emailaddress'},
2018-07-30 15:00:41 +00:00
'users/delete.html',
request
)
@login_required
2018-06-29 14:36:04 +00:00
@can_edit(User)
2018-07-30 15:00:41 +00:00
def edit_email_settings(request, user_instance, **_kwargs):
"""Edit the email settings of a user"""
email_settings = EmailSettingsForm(
request.POST or None,
instance=user_instance,
user=request.user
)
2018-07-30 15:00:41 +00:00
if email_settings.is_valid():
if email_settings.changed_data:
email_settings.save()
messages.success(request, "Email settings updated")
return redirect(reverse(
'users:profil',
kwargs={'userid': str(user_instance.id)}
))
return form(
2018-07-30 15:00:41 +00:00
{'userform': email_settings,
'showCGU': False,
'action_name': 'Edit the email settings'},
'users/user.html',
request
)
2018-07-30 15:00:41 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_create(School)
2016-07-06 17:45:36 +00:00
def add_school(request):
2017-10-14 20:10:07 +00:00
""" Ajouter un établissement d'enseignement à la base de donnée,
need cableur"""
2016-07-06 17:45:36 +00:00
school = SchoolForm(request.POST or None)
if school.is_valid():
school.save()
2016-07-06 17:45:36 +00:00
messages.success(request, "L'établissement a été ajouté")
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-school'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': school, 'action_name': 'Ajouter'},
'users/user.html',
request
)
2016-07-06 17:45:36 +00:00
2017-10-14 20:10:07 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_edit(School)
2018-04-15 01:00:05 +00:00
def edit_school(request, school_instance, **_kwargs):
2017-10-14 20:10:07 +00:00
""" Editer un établissement d'enseignement à partir du schoolid dans
la base de donnée, need cableur"""
school = SchoolForm(request.POST or None, instance=school_instance)
if school.is_valid():
2018-03-31 22:06:44 +00:00
if school.changed_data:
school.save()
messages.success(request, "Établissement modifié")
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-school'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': school, 'action_name': 'Editer'},
'users/user.html',
request
)
2017-10-14 20:10:07 +00:00
2016-07-08 10:35:53 +00:00
@login_required
2017-12-13 17:35:16 +00:00
@can_delete_set(School)
2017-12-12 03:33:50 +00:00
def del_school(request, instances):
2017-10-14 20:10:07 +00:00
""" Supprimer un établissement d'enseignement à la base de donnée,
need cableur
Objet protégé, possible seulement si aucun user n'est affecté à
l'établissement """
2017-12-12 03:33:50 +00:00
school = DelSchoolForm(request.POST or None, instances=instances)
2016-07-06 17:45:36 +00:00
if school.is_valid():
school_dels = school.cleaned_data['schools']
for school_del in school_dels:
try:
school_del.delete()
2016-07-06 17:45:36 +00:00
messages.success(request, "L'établissement a été supprimé")
except ProtectedError:
messages.error(
request,
"L'établissement %s est affecté à au moins un user, \
2016-07-08 01:40:04 +00:00
vous ne pouvez pas le supprimer" % school_del)
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-school'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': school, 'action_name': 'Supprimer'},
'users/user.html',
request
)
2016-07-06 17:45:36 +00:00
2017-10-14 20:10:07 +00:00
@login_required
@can_create(ListShell)
def add_shell(request):
2018-03-25 21:01:06 +00:00
""" Ajouter un shell à la base de donnée"""
shell = ShellForm(request.POST or None)
if shell.is_valid():
shell.save()
messages.success(request, "Le shell a été ajouté")
return redirect(reverse('users:index-shell'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': shell, 'action_name': 'Ajouter'},
'users/user.html',
request
)
@login_required
@can_edit(ListShell)
2018-04-15 01:00:05 +00:00
def edit_shell(request, shell_instance, **_kwargs):
2018-03-28 18:46:17 +00:00
""" Editer un shell à partir du listshellid"""
shell = ShellForm(request.POST or None, instance=shell_instance)
if shell.is_valid():
2018-03-31 22:06:44 +00:00
if shell.changed_data:
shell.save()
messages.success(request, "Le shell a été modifié")
return redirect(reverse('users:index-shell'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': shell, 'action_name': 'Editer'},
'users/user.html',
request
)
@login_required
@can_delete(ListShell)
2018-04-15 01:00:05 +00:00
def del_shell(request, shell, **_kwargs):
"""Destruction d'un shell"""
if request.method == "POST":
shell.delete()
messages.success(request, "Le shell a été détruit")
return redirect(reverse('users:index-shell'))
return form(
{'objet': shell, 'objet_name': 'shell'},
'users/delete.html',
request
)
@login_required
@can_create(ListRight)
def add_listright(request):
2016-11-21 00:49:45 +00:00
""" Ajouter un droit/groupe, nécessite droit bureau.
Obligation de fournir un gid pour la synchro ldap, unique """
listright = NewListRightForm(request.POST or None)
if listright.is_valid():
listright.save()
messages.success(request, "Le droit/groupe a été ajouté")
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-listright'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': listright, 'action_name': 'Ajouter'},
'users/user.html',
request
)
2017-10-14 20:10:07 +00:00
@login_required
@can_edit(ListRight)
2018-04-15 01:00:05 +00:00
def edit_listright(request, listright_instance, **_kwargs):
2017-10-14 20:10:07 +00:00
""" Editer un groupe/droit, necessite droit bureau,
à partir du listright id """
listright = ListRightForm(
request.POST or None,
instance=listright_instance
)
if listright.is_valid():
2018-03-31 22:06:44 +00:00
if listright.changed_data:
listright.save()
messages.success(request, "Droit modifié")
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-listright'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': listright, 'action_name': 'Editer'},
'users/user.html',
request
)
2017-10-14 20:10:07 +00:00
@login_required
2017-12-13 17:35:16 +00:00
@can_delete_set(ListRight)
def del_listright(request, instances):
2017-10-14 20:10:07 +00:00
""" Supprimer un ou plusieurs groupe, possible si il est vide, need droit
bureau """
2017-12-13 17:35:16 +00:00
listright = DelListRightForm(request.POST or None, instances=instances)
if listright.is_valid():
listright_dels = listright.cleaned_data['listrights']
for listright_del in listright_dels:
try:
listright_del.delete()
messages.success(request, "Le droit/groupe a été supprimé")
except ProtectedError:
messages.error(
request,
"Le groupe %s est affecté à au moins un user, \
vous ne pouvez pas le supprimer" % listright_del)
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index-listright'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': listright, 'action_name': 'Supprimer'},
'users/user.html',
request
)
2017-10-14 20:10:07 +00:00
@login_required
@can_view_all(User)
@can_change(User, 'state')
def mass_archive(request):
""" Permet l'archivage massif"""
to_archive_date = MassArchiveForm(request.POST or None)
to_archive_list = []
if to_archive_date.is_valid():
date = to_archive_date.cleaned_data['date']
2017-10-14 20:10:07 +00:00
to_archive_list = [user for user in
User.objects.exclude(state=User.STATE_ARCHIVE)
if not user.end_access()
or user.end_access() < date]
if "valider" in request.POST:
for user in to_archive_list:
with transaction.atomic(), reversion.create_revision():
user.archive()
user.save()
reversion.set_comment("Archivage")
2017-10-14 20:10:07 +00:00
messages.success(request, "%s users ont été archivés" % len(
to_archive_list
))
2017-10-26 15:58:41 +00:00
return redirect(reverse('users:index'))
2017-10-14 20:10:07 +00:00
return form(
{'userform': to_archive_date, 'to_archive_list': to_archive_list},
'users/mass_archive.html',
request
)
2016-07-08 10:35:53 +00:00
@login_required
@can_view_all(Adherent)
2016-07-01 22:35:44 +00:00
def index(request):
""" Affiche l'ensemble des adherents, need droit cableur """
pagination_number = GeneralOption.get_cached_value('pagination_number')
users_list = Adherent.objects.select_related('room')
users_list = SortTable.sort(
users_list,
request.GET.get('col'),
request.GET.get('order'),
SortTable.USERS_INDEX
)
users_list = re2o_paginator(request, users_list, pagination_number)
return render(request, 'users/index.html', {'users_list': users_list})
2016-07-03 16:09:58 +00:00
2017-10-14 20:10:07 +00:00
@login_required
2017-12-28 15:10:34 +00:00
@can_view_all(Club)
def index_clubs(request):
""" Affiche l'ensemble des clubs, need droit cableur """
pagination_number = GeneralOption.get_cached_value('pagination_number')
2017-12-28 15:10:34 +00:00
clubs_list = Club.objects.select_related('room')
clubs_list = SortTable.sort(
clubs_list,
request.GET.get('col'),
request.GET.get('order'),
SortTable.USERS_INDEX
)
clubs_list = re2o_paginator(request, clubs_list, pagination_number)
2018-04-14 01:25:05 +00:00
return render(
request,
'users/index_clubs.html',
{'clubs_list': clubs_list}
)
2016-07-08 10:35:53 +00:00
@login_required
@can_view_all(Ban)
def index_ban(request):
2016-11-21 00:49:45 +00:00
""" Affiche l'ensemble des ban, need droit cableur """
pagination_number = GeneralOption.get_cached_value('pagination_number')
ban_list = Ban.objects.select_related('user')
ban_list = SortTable.sort(
ban_list,
request.GET.get('col'),
request.GET.get('order'),
SortTable.USERS_INDEX_BAN
)
ban_list = re2o_paginator(request, ban_list, pagination_number)
return render(request, 'users/index_ban.html', {'ban_list': ban_list})
2017-10-14 20:10:07 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_view_all(Whitelist)
def index_white(request):
2016-11-21 00:49:45 +00:00
""" Affiche l'ensemble des whitelist, need droit cableur """
pagination_number = GeneralOption.get_cached_value('pagination_number')
white_list = Whitelist.objects.select_related('user')
white_list = SortTable.sort(
white_list,
request.GET.get('col'),
request.GET.get('order'),
SortTable.USERS_INDEX_BAN
)
white_list = re2o_paginator(request, white_list, pagination_number)
return render(
request,
'users/index_whitelist.html',
{'white_list': white_list}
)
2017-10-14 20:10:07 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_view_all(School)
def index_school(request):
""" Affiche l'ensemble des établissement"""
school_list = School.objects.order_by('name')
pagination_number = GeneralOption.get_cached_value('pagination_number')
school_list = SortTable.sort(
school_list,
request.GET.get('col'),
request.GET.get('order'),
SortTable.USERS_INDEX_SCHOOL
)
school_list = re2o_paginator(request, school_list, pagination_number)
2017-10-14 20:10:07 +00:00
return render(
request,
'users/index_schools.html',
{'school_list': school_list}
)
@login_required
@can_view_all(ListShell)
def index_shell(request):
""" Affiche l'ensemble des shells"""
shell_list = ListShell.objects.order_by('shell')
return render(
request,
'users/index_shell.html',
{'shell_list': shell_list}
)
@login_required
@can_view_all(ListRight)
def index_listright(request):
""" Affiche l'ensemble des droits"""
rights = {}
for right in (ListRight.objects
.order_by('name')
.prefetch_related('permissions')
.prefetch_related('user_set')
.prefetch_related('user_set__facture_set__vente_set__cotisation')
):
rights[right] = (right.user_set
.annotate(action_number=Count('revision'),
last_seen=Max('revision__date_created'),
end_adhesion=Max('facture__vente__cotisation__date_end'))
)
superusers = (User.objects
.filter(is_superuser=True)
.annotate(action_number=Count('revision'),
last_seen=Max('revision__date_created'),
end_adhesion=Max('facture__vente__cotisation__date_end'))
)
2017-10-14 20:10:07 +00:00
return render(
request,
'users/index_listright.html',
2018-04-16 22:32:37 +00:00
{
'rights': rights,
'superusers' : superusers,
2018-04-16 22:32:37 +00:00
}
2017-10-14 20:10:07 +00:00
)
2017-06-18 12:59:53 +00:00
@login_required
@can_view_all(ServiceUser)
2017-06-18 12:59:53 +00:00
def index_serviceusers(request):
""" Affiche les users de services (pour les accès ldap)"""
serviceusers_list = ServiceUser.objects.order_by('pseudo')
2017-10-14 20:10:07 +00:00
return render(
request,
'users/index_serviceusers.html',
{'serviceusers_list': serviceusers_list}
)
2017-06-18 12:59:53 +00:00
@login_required
def mon_profil(request):
2016-11-21 00:49:45 +00:00
""" Lien vers profil, renvoie request.id à la fonction """
2017-10-26 15:58:41 +00:00
return redirect(reverse(
'users:profil',
2018-04-14 01:25:05 +00:00
kwargs={'userid': str(request.user.id)}
))
2017-10-14 20:10:07 +00:00
2016-07-08 10:35:53 +00:00
@login_required
@can_view(User)
2018-04-15 01:00:05 +00:00
def profil(request, users, **_kwargs):
2016-11-21 00:49:45 +00:00
""" Affiche un profil, self or cableur, prend un userid en argument """
2017-10-14 20:10:07 +00:00
machines = Machine.objects.filter(user=users).select_related('user')\
.prefetch_related('interface_set__domain__extension')\
.prefetch_related('interface_set__ipv4__ip_type__extension')\
.prefetch_related('interface_set__type')\
.prefetch_related('interface_set__domain__related_domain__extension')
machines = SortTable.sort(
machines,
request.GET.get('col'),
request.GET.get('order'),
SortTable.MACHINES_INDEX
)
2018-04-14 01:25:05 +00:00
pagination_large_number = GeneralOption.get_cached_value(
'pagination_large_number'
)
2018-04-16 21:57:22 +00:00
nb_machines = machines.count()
machines = re2o_paginator(request, machines, pagination_large_number)
2017-10-10 23:02:50 +00:00
factures = Facture.objects.filter(user=users)
factures = SortTable.sort(
factures,
request.GET.get('col'),
request.GET.get('order'),
SortTable.COTISATIONS_INDEX
)
2017-10-10 23:02:50 +00:00
bans = Ban.objects.filter(user=users)
bans = SortTable.sort(
bans,
request.GET.get('col'),
request.GET.get('order'),
SortTable.USERS_INDEX_BAN
)
2017-10-10 23:02:50 +00:00
whitelists = Whitelist.objects.filter(user=users)
whitelists = SortTable.sort(
whitelists,
request.GET.get('col'),
request.GET.get('order'),
SortTable.USERS_INDEX_WHITE
)
try:
balance = find_payment_method(Paiement.objects.get(is_balance=True))
except Paiement.DoesNotExist:
user_solde = False
else:
user_solde = (
balance is not None
and balance.can_credit_balance(request.user)
)
return render(
request,
'users/profil.html',
{
'users': users,
'machines_list': machines,
'nb_machines': nb_machines,
'facture_list': factures,
'ban_list': bans,
'white_list': whitelists,
2017-06-26 17:23:01 +00:00
'user_solde': user_solde,
2018-07-10 21:36:01 +00:00
'solde_activated': Paiement.objects.filter(is_balance=True).exists(),
'asso_name': AssoOption.objects.first().name,
2018-08-01 11:06:25 +00:00
'emailaddress_list': users.email_address,
2018-07-30 15:00:41 +00:00
'local_email_accounts_enabled': (
OptionalUser.objects.first().local_email_accounts_enabled
)
2016-07-08 01:40:04 +00:00
}
)
2016-07-03 16:09:58 +00:00
2017-10-14 20:10:07 +00:00
2016-07-20 10:06:33 +00:00
def reset_password(request):
2016-11-21 00:49:45 +00:00
""" Reintialisation du mot de passe si mdp oublié """
2016-07-20 10:06:33 +00:00
userform = ResetPasswordForm(request.POST or None)
if userform.is_valid():
try:
2017-10-14 20:10:07 +00:00
user = User.objects.get(
pseudo=userform.cleaned_data['pseudo'],
email=userform.cleaned_data['email']
)
2016-07-20 10:06:33 +00:00
except User.DoesNotExist:
messages.error(request, "Cet utilisateur n'existe pas")
2018-04-14 01:25:05 +00:00
return form(
{'userform': userform, 'action_name': 'Réinitialiser'},
'users/user.html',
request
)
user.reset_passwd_mail(request)
2017-10-14 20:10:07 +00:00
messages.success(request, "Un mail pour l'initialisation du mot\
de passe a été envoyé")
redirect(reverse('index'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': userform, 'action_name': 'Réinitialiser'},
'users/user.html',
request
)
2016-07-20 10:06:33 +00:00
2017-10-14 20:10:07 +00:00
def process(request, token):
2017-10-14 20:10:07 +00:00
"""Process, lien pour la reinitialisation du mot de passe"""
valid_reqs = Request.objects.filter(expires_at__gt=timezone.now())
req = get_object_or_404(valid_reqs, token=token)
if req.type == Request.PASSWD:
return process_passwd(request, req)
else:
2016-07-20 10:06:33 +00:00
messages.error(request, "Entrée incorrecte, contactez un admin")
redirect(reverse('index'))
2017-10-14 20:10:07 +00:00
def process_passwd(request, req):
2017-10-14 20:10:07 +00:00
"""Process le changeemnt de mot de passe, renvoie le formulaire
demandant le nouveau password"""
user = req.user
u_form = PassForm(request.POST or None, instance=user, user=request.user)
if u_form.is_valid():
with transaction.atomic(), reversion.create_revision():
u_form.save()
reversion.set_comment("Réinitialisation du mot de passe")
req.delete()
messages.success(request, "Le mot de passe a changé")
2018-02-20 21:23:52 +00:00
return redirect(reverse('index'))
2018-04-14 01:25:05 +00:00
return form(
{'userform': u_form, 'action_name': 'Changer le mot de passe'},
'users/user.html',
request
)
2017-10-14 20:10:07 +00:00
class JSONResponse(HttpResponse):
2017-10-14 20:10:07 +00:00
""" Framework Rest """
def __init__(self, data, **kwargs):
content = JSONRenderer().render(data)
kwargs['content_type'] = 'application/json'
super(JSONResponse, self).__init__(content, **kwargs)
2017-10-14 20:10:07 +00:00
@csrf_exempt
@login_required
@permission_required('machines.serveur')
2018-04-14 23:16:49 +00:00
def ml_std_list(_request):
""" API view sending all the available standard mailings"""
return JSONResponse([
{'name': 'adherents'}
])
@csrf_exempt
@login_required
@permission_required('machines.serveur')
def ml_std_members(request, ml_name):
""" API view sending all the members for a standard mailing"""
# All with active connextion
if ml_name == 'adherents':
members = all_has_access().values('email').distinct()
# Unknown mailing
else:
messages.error(request, "Cette mailing n'existe pas")
return redirect(reverse('index'))
seria = MailingMemberSerializer(members, many=True)
return JSONResponse(seria.data)
@csrf_exempt
@login_required
@permission_required('machines.serveur')
2018-04-14 23:16:49 +00:00
def ml_club_list(_request):
""" API view sending all the available club mailings"""
clubs = Club.objects.filter(mailing=True).values('pseudo')
seria = MailingSerializer(clubs, many=True)
return JSONResponse(seria.data)
@csrf_exempt
@login_required
@permission_required('machines.serveur')
def ml_club_admins(request, ml_name):
""" API view sending all the administrators for a specific club mailing"""
try:
club = Club.objects.get(mailing=True, pseudo=ml_name)
except Club.DoesNotExist:
messages.error(request, "Cette mailing n'existe pas")
return redirect(reverse('index'))
members = club.administrators.all().values('email').distinct()
seria = MailingMemberSerializer(members, many=True)
return JSONResponse(seria.data)
@csrf_exempt
@login_required
@permission_required('machines.serveur')
def ml_club_members(request, ml_name):
""" API view sending all the members for a specific club mailing"""
try:
club = Club.objects.get(mailing=True, pseudo=ml_name)
except Club.DoesNotExist:
messages.error(request, "Cette mailing n'existe pas")
return redirect(reverse('index'))
2018-04-14 01:25:05 +00:00
members = (
club.administrators.all().values('email').distinct() |
club.members.all().values('email').distinct()
)
seria = MailingMemberSerializer(members, many=True)
return JSONResponse(seria.data)