[auf_rh_dae.git] / project / dae / permissions.py

from auf.django.permissions import allow

from project.dae.decorators import user_in_dae_groupes
from project.dae.groups import grp_drh, grp_drh2, grp_haute_direction
import project.dae.models as dae


def user_in_group(*groups):
    def test(user, obj):
        user_groups = set(user.groups.all())
        return any(g in user_groups for g in groups)
    return test

allow('modifier_dae_numerisee', dae.Dossier, user_in_group(grp_drh, grp_drh2, grp_haute_direction))

allow('consulter', dae.Dossier,
      lambda user, obj: (user_in_dae_groupes(user) or
                         dae.Dossier.objects.ma_region_ou_service(user).filter(id=obj.id).exists()))
Commit	Line	Data
	1	from auf.django.permissions import allow
	2
	3	from project.dae.decorators import user_in_dae_groupes
	4	from project.dae.groups import grp_drh, grp_drh2, grp_haute_direction
	5	import project.dae.models as dae
	6
	7
	8	def user_in_group(*groups):
	9	def test(user, obj):
	10	user_groups = set(user.groups.all())
	11	return any(g in user_groups for g in groups)
	12	return test
	13
	14	allow('modifier_dae_numerisee', dae.Dossier, user_in_group(grp_drh, grp_drh2, grp_haute_direction))
	15
	16	allow('consulter', dae.Dossier,
	17	lambda user, obj: (user_in_dae_groupes(user) or
	18	dae.Dossier.objects.ma_region_ou_service(user).filter(id=obj.id).exists()))