0001-mics-fix-shown_because_admin-when-cell.restricted_to.patch

Benjamin Dauvergne, 12 août 2020 15:29

Voir les différences: en ligne côte à côte

Subject: [PATCH] mics: fix shown_because_admin when
 cell.restricted_to_unlogged is True (#45846)

Also fix behaviour of element_is_visible() when user is superuser and
cell is visible only by unlogged users.

 combo/data/models.py               |  8 ++++++--
 combo/public/templatetags/combo.py | 11 ++---------
 tests/test_cells.py                |  5 ++++-
 tests/test_public.py               |  4 ++--
 tox.ini                            |  1 +
 5 files changed, 15 insertions(+), 14 deletions(-)

     def element_is_visible(element, user=None):
         if user and user.is_superuser:
             return True
         return element_is_visible_not_admin(element, user=user)
     def element_is_visible_not_admin(element, user):
         if element.public:
             if getattr(element, 'restricted_to_unlogged', None) is True:
                 return (user is None or user.is_anonymous)
             return True
         if user is None or user.is_anonymous:
             return False
         if user.is_superuser:
             return True
         page_groups = element.groups.all()
         if not page_groups:
             groups_ok = True

     from django.utils.safestring import mark_safe
     from django.utils.timezone import is_naive, make_aware
     from combo.data.models import Page, Placeholder
     from combo.data.models import Page, Placeholder, element_is_visible_not_admin
     from combo.public.menu import get_menu_context
     from combo.utils import NothingInCacheException, flatten_context
     from combo.utils.date import make_date, make_datetime
-...
     @register.filter
     def shown_because_admin(cell, request):
         if not (request.user and request.user.is_superuser):
             return False
         if cell.public:
             return False
         cell_groups = cell.groups.all()
         if not cell_groups:
             return False
         return not(set(cell_groups).intersection(request.user.groups.all()))
         return not element_is_visible_not_admin(cell, user=request.user)
     @register.filter(name='has_role')

         assert len(page.get_cells()) == 0
     def test_page_cell_placeholder_restricted_visibility(app, admin_user):
         page = Page(title='Test', slug='test', template_name='standard')
         page.save()
-...
         resp = app.get(reverse('combo-public-ajax-page-cell',
                         kwargs={'page_pk': page.pk, 'cell_reference': json_cell.get_reference()}))
         assert "<p>Public text</p>" not in resp.text
         assert "<p>Public text</p>" in resp.text
         assert "<p>Private text</p>" in resp.text
         assert resp.pyquery('.shown-because-admin').text() == 'Public text'
     def test_related_cell_types_tracking():
         page = Page(title='example page', slug='example-page')

         app = login(app)
         resp = app.get('/', status=200)
         assert not 'Foobar' in resp.text
         assert resp.pyquery('.shown-because-admin').text() == 'Foobar'
     @pytest.mark.skipif('mellon is None')
     def test_mellon_login(app):
-...
                 resp = app.get(reverse('combo-public-ajax-page-cell',
                                        kwargs={'page_pk': page.pk, 'cell_reference': family_cell.get_reference()}))
                 resp = app.get('/')
                 assert "<p>Hello anonymous user</p>" not in resp.text
                 assert resp.pyquery('.shown-because-admin').text() == 'Hello anonymous user'
                 assert "<p>You are not linked</p>" in resp.text

       vobject
       django-ratelimit<3
       git+http://git.entrouvert.org/debian/django-ckeditor.git
       pyquery
     commands =
       ./getlasso3.sh
       python manage.py compilemessages
+    -

Projet

Général

Profil

Produits Entr'ouvert » Combo

0001-mics-fix-shown_because_admin-when-cell.restricted_to.patch