added helpers for role and permissions displays in templates

2025-08-16 06:24:12 +02:00 · 2025-02-05 06:29:10 -05:00 · 2025-02-05 06:29:10 -05:00 · 0e6bc6f07f
commit 0e6bc6f07f
parent c157011cfc
6 changed files with 245 additions and 26 deletions
--- a/src/registrar/models/user_portfolio_permission.py
+++ b/src/registrar/models/user_portfolio_permission.py
@ -6,6 +6,10 @@ from registrar.models.utility.portfolio_helper import (
    DomainRequestPermissionDisplay,
    MemberPermissionDisplay,
    cleanup_after_portfolio_member_deletion,
+    get_domain_requests_display,
+    get_domains_display,
+    get_members_display,
+    get_role_display,
    validate_user_portfolio_permission,
 )
 from .utility.time_stamped_model import TimeStampedModel
@ -185,6 +189,60 @@ class UserPortfolioPermission(TimeStampedModel):
        # This is the same as portfolio_permissions & common_forbidden_perms.
        return portfolio_permissions.intersection(common_forbidden_perms)

+    @property
+    def role_display(self):
+        """
+        Returns a human-readable display name for the user's role.
+
+        Uses the `get_role_display` function to determine if the user is an "Admin",
+        "Basic" member, or has no role assigned.
+
+        Returns:
+            str: The display name of the user's role.
+        """
+        return get_role_display(self.roles)
+    
+    @property
+    def domains_display(self):
+        """
+        Returns a string representation of the user's domain access level.
+
+        Uses the `get_domains_display` function to determine whether the user has 
+        "Viewer, all" access (can view all domains) or "Viewer, limited" access.
+
+        Returns:
+            str: The display name of the user's domain permissions.
+        """
+        return get_domains_display(self.roles, self.additional_permissions)
+    
+    @property
+    def domain_requests_display(self):
+        """
+        Returns a string representation of the user's access to domain requests.
+
+        Uses the `get_domain_requests_display` function to determine if the user 
+        is a "Creator" (can create and edit requests), a "Viewer" (can only view requests), 
+        or has "No access" to domain requests.
+
+        Returns:
+            str: The display name of the user's domain request permissions.
+        """
+        return get_domain_requests_display(self.roles, self.additional_permissions)
+    
+    @property
+    def members_display(self):
+        """
+        Returns a string representation of the user's access to managing members.
+
+        Uses the `get_members_display` function to determine if the user is a 
+        "Manager" (can edit members), a "Viewer" (can view members), or has "No access" 
+        to member management.
+
+        Returns:
+            str: The display name of the user's member management permissions.
+        """
+        return get_members_display(self.roles, self.additional_permissions)
+
    def clean(self):
        """Extends clean method to perform additional validation, which can raise errors in django admin."""
        super().clean()