py_tasks_melange: comparison app/soc/views/helper/access.py

equal deleted inserted replaced

-:1cd180cc56c9
+:fd2e83a297c7
 from functools import wraps
 @wraps(fun)
 def wrapper(self, django_args, *args, **kwargs):
+"""Decorator wrapper method.
+"""
 if django_args.get('SIDEBAR_CALLING'):
 return
 return fun(self, django_args, *args, **kwargs)
 return wrapper
 from functools import wraps
 @wraps(fun)
 def wrapper(self, django_args, *args, **kwargs):
+"""Decorator wrapper method.
+"""
 if django_args.get('SIDEBAR_CALLING'):
 raise out_of_band.Error("Sidebar Calling")
 return fun(self, django_args, *args, **kwargs)
 return wrapper
 """Decorator that allows access if the current user is a Developer.
 """
 @wraps(fun)
 def wrapper(self, django_args=None, *args, **kwargs):
+"""Decorator wrapper method.
+"""
 try:
 # if the check passes we allow access regardless
 return self.doCheck(checker_name, django_args, [])
 except out_of_band.Error:
 # otherwise we run the original check
 return fun(self, django_args, *args, **kwargs)
 return wrapper
 return decorator
+# pylint: disable-msg=C0103
 allowDeveloper = allowIfCheckPasses('checkIsDeveloper')
 class Checker(object):
 """
 The __setitem__() and __getitem__() methods are overloaded to DTRT
 If none of the specified checks passes, the exception that the first of the
 checks raised is reraised.
 """
-first = None
+first = Exception()
 for checker_name, args in checks:
 try:
 self.doCheck(checker_name, django_args, args)
 # one check passed, all is well
 django_args = django_args.copy()
 django_args['user'] = self.user
 self._checkIsActive(django_args, logic, fields)
 def checkHasActiveRoleForKeyFieldsAsScope(self, django_args, logic):
-"""
+"""Checks that the user has the specified active role.
+Args:
+django_args: a dictionary with django's arguments
+logic: the logic that should be used to look up the entity
 """
 key_fields = "%(scope_path)s/%(link_id)s" % django_args
 new_args = {'scope_path': key_fields}
 self._checkHasActiveRoleFor(new_args, logic, 'scope_path')
 """
 if not django_args.get('scope_path'):
 raise out_of_band.AccessViolation(message_fmt=DEF_PAGE_DENIED_MSG)
-program_entity = program_logic.getFromKeyNameOr404(django_args['scope_path'])
+program_entity = program_logic.getFromKeyNameOr404(
+django_args['scope_path'])
 user_entity = user_logic.getForCurrentAccount()
 filter = {'user': user_entity,
 'scope': program_entity,
 'status': 'active'}
 if student_role:
 raise out_of_band.AccessViolation(
 message_fmt=DEF_ALREADY_PARTICIPATING_MSG)
 # fill the role_list with all the mentor and org admin roles for this user
-role_list = []
+# role_list = []
 filter = {'user': user_entity,
 'program': program_entity,
 'status': 'active'}
 raise out_of_band.AccessViolation(message_fmt=DEF_NOT_YOUR_ENTITY_MSG)
 @allowDeveloper
 @denySidebar
-def checkIsAllowedToManageRole(self, django_args, role_logic, manage_role_logic):
+def checkIsAllowedToManageRole(self, django_args, logic_for_role,
+manage_role_logic):
 """Returns an alternate HTTP response if the user is not allowed to manage
 the role given in args.
 Args:
 django_args: a dictionary with django's arguments
-role_logic: determines the logic for the role in args.
+logic_for_role: determines the logic for the role in args.
 manage_role_logic: determines the logic for the role which is allowed
 to manage this role.
 Raises:
 AccessViolationResponse: if the required authorization is not met
 that belongs to the same scope as the role that needs to be managed
 """
 try:
 # check if it is my role the user's own role
-self.checkHasActiveRoleForScope(django_args, role_logic)
+self.checkHasActiveRoleForScope(django_args, logic_for_role)
 return
 except out_of_band.Error:
 pass
-# apparently it's not the user's role so check if managing this role is allowed
+# apparently it's not the user's role so check
+# if managing this role is allowed
 fields = {
 'link_id': django_args['link_id'],
 'scope_path': django_args['scope_path'],
 }

changeset 2077	fd2e83a297c7
parent 2032	b881417db09e
child 2101	d6250eac3ab0