py_tasks_melange: comparison app/soc/views/helper/access.py

equal deleted inserted replaced

-:602c2b2f4d8b
+:7fe218e3d359
 return
 except out_of_band.Error:
 pass
 checkIsUser(request)
-splitpath = request.path.split('/')
+# Mine the url for params
-splitpath = splitpath[1:] # cut off leading ''
+try:
+callback, args, kwargs = urlresolvers.resolve(request.path)
-# get the notification scope (user link_id) from the request path
+except Exception:
-user_link_id = splitpath[2]
+deny(request)
-# get the notification link_id from the request path
-notification_link_id = splitpath[3]
+properties = dicts.filter(kwargs, ['link_id', 'scope_path'])
-properties = {
-'link_id': notification_link_id,
-'scope_path': user_link_id,
-}
 notification = notification_logic.logic.getForFields(properties, unique=True)
 user = user_logic.logic.getForCurrentAccount()
-# check if the key of the current user matches the key from the scope of the message
+# We need to check to see if the key's are equal since the User
+# objects are different and the default __eq__ method does not check
+# if the keys are equal (which is what we want).
 if user.key() == notification.scope.key():
-# access granted
 return None
-else:
-# access denied
+# TODO(ljvderijk) Make this give a proper error message
 deny(request)
 def checkCanInvite(request):
 """Checks to see if the current user can create an invite
 Note that if the current url is not in the default 'request' form