usr signup and more

2026-01-01 04:10:06 -05:00 · 2021-02-21 15:08:43 +01:00
parent beb4aa634f
commit 846c660811
15 changed files with 287 additions and 106 deletions
--- a/cookbook/helper/permission_helper.py
+++ b/cookbook/helper/permission_helper.py
@@ -123,9 +123,13 @@ class GroupRequiredMixin(object):
            messages.add_message(request, messages.ERROR, _('You do not have the required permissions to view this page!'))
            return HttpResponseRedirect(reverse_lazy('index'))

-        if self.get_object().get_space() != request.space:
-            messages.add_message(request, messages.ERROR, _('You do not have the required permissions to view this page!'))
-            return HttpResponseRedirect(reverse_lazy('index'))
+        try:
+            obj = self.get_object()
+            if obj.get_space() != request.space:
+                messages.add_message(request, messages.ERROR, _('You do not have the required permissions to view this page!'))
+                return HttpResponseRedirect(reverse_lazy('index'))
+        except AttributeError:
+            pass

        return super(GroupRequiredMixin, self).dispatch(request, *args, **kwargs)

@@ -141,9 +145,13 @@ class OwnerRequiredMixin(object):
                messages.add_message(request, messages.ERROR, _('You cannot interact with this object as it is not owned by you!'))
                return HttpResponseRedirect(reverse('index'))

-        if self.get_object().get_space() != request.space:
-            messages.add_message(request, messages.ERROR, _('You do not have the required permissions to view this page!'))
-            return HttpResponseRedirect(reverse_lazy('index'))
+        try:
+            obj = self.get_object()
+            if obj.get_space() != request.space:
+                messages.add_message(request, messages.ERROR, _('You do not have the required permissions to view this page!'))
+                return HttpResponseRedirect(reverse_lazy('index'))
+        except AttributeError:
+            pass

        return super(OwnerRequiredMixin, self).dispatch(request, *args, **kwargs)

--- a/cookbook/helper/scope_middleware.py
+++ b/cookbook/helper/scope_middleware.py
@@ -1,3 +1,5 @@
+from django.shortcuts import redirect
+from django.urls import reverse
 from django_scopes import scope, scopes_disabled


@@ -7,10 +9,21 @@ class ScopeMiddleware:

    def __call__(self, request):
        if request.user.is_authenticated:
-            request.space = request.user.userpreference.space
+
+            if request.user.groups.count() == 0:
+                return redirect('view_no_group')

            with scopes_disabled():
-            #with scope(space=request.space):
+                if request.user.userpreference.space is None and not reverse('view_no_space') in request.path and not reverse('account_logout') in request.path:
+                    return redirect(reverse('view_no_space'))
+
+            if request.path.startswith('/admin/'):
+                with scopes_disabled():
+                    return self.get_response(request)
+
+            request.space = request.user.userpreference.space
+            # with scopes_disabled():
+            with scope(space=request.space):
                return self.get_response(request)
        else:
            return self.get_response(request)