# -*- encoding: utf-8 -*-
+from django.db.models import Q
from django.contrib import messages
from django.contrib.auth.decorators import user_passes_test
from django.core.urlresolvers import reverse
from django.http import HttpResponseRedirect
-from workflow import dae_groupes, ETATS_EDITABLE
+from workflow import dae_groupes, ETATS_EDITABLE, grp_drh
from project.dae import models as dae
from project.rh_v1 import models as rh
+from utils import get_employe_from_user, is_user_dans_service
def user_in_dae_groupes(user):
"""
return poste_dans_ma_region_ou_service(fn)(request, *args, **kwargs)
return inner
+def vieux_dossier_dans_ma_region_ou_service(fn):
+ """
+ Test si le user connecté appartient bien à la même région ou service que le poste.
+ """
+ def inner(request, *args, **kwargs):
+ user = request.user
+ dossier_id = kwargs.get('dossier_id', None)
+
+ employe = get_employe_from_user(request.user)
+ prefixe_implantation = 'poste1__implantation'
+
+ if is_user_dans_service(request.user):
+ q_place = Q(**{ '%s' % prefixe_implantation : employe.implantation })
+ else:
+ q_place = Q(**{ '%s__region' % prefixe_implantation : employe.implantation.region })
+
+
+ if grp_drh in request.user.groups.all():
+ q_filtre = Q(id=dossier_id)
+ else:
+ q_filtre = q_place & Q(id=dossier_id)
+
+ try:
+ dossier = rh.Dossier.objects.get(q_filtre)
+ return fn(request, *args, **kwargs)
+ except Exception, e:
+ msg = u"Vous n'avez pas le droit de consulter ce dossier d'embauche."
+ return redirect_interdiction(request, msg)
+
+
+ return inner
+
def employe_dans_ma_region_ou_service(fn):
"""
Test d'accès à un employé
projets / auf_rh_dae.git / blobdiff