zydronium/manage.get.gov
1
0
Fork 0
mirror of https://github.com/cisagov/manage.get.gov.git synced 2025-08-12 12:39:43 +02:00
Code Issues Projects Releases Packages Wiki Activity

domain views has_permissions updated

Browse source
This commit is contained in:
David Kennedy 2023-11-22 10:48:13 -05:00
parent 6da9fdab2a
commit 1efb7d23f3
No known key found for this signature in database
GPG key ID: 6528A5386E66B96B
2 changed files with 39 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

22
src/registrar/views/domain.py
View file

@ -152,6 +152,28 @@ class DomainView(DomainBaseView):
context["security_email"] = security_email context["security_email"] = security_email
return context return context
def in_editable_state(self, pk):
"""Override in_editable_state from DomainPermission
Allow detail page to be editable"""
requested_domain = None
if Domain.objects.filter(id=pk).exists():
requested_domain = Domain.objects.get(id=pk)
# if domain is editable return true
if requested_domain:
return True
return False
def _get_domain(self, request):
"""
override get_domain for this view so that domain overview
always resets the cache for the domain object
"""
self.session = request.session
self.object = self.get_object()
self._update_session_with_domain()
class DomainOrgNameAddressView(DomainFormBaseView): class DomainOrgNameAddressView(DomainFormBaseView):
"""Organization name and mailing address view""" """Organization name and mailing address view"""

17
src/registrar/views/utility/mixins.py
View file

@ -3,6 +3,7 @@
from django.contrib.auth.mixins import PermissionRequiredMixin from django.contrib.auth.mixins import PermissionRequiredMixin
from registrar.models import ( from registrar.models import (
Domain,
DomainApplication, DomainApplication,
DomainInvitation, DomainInvitation,
DomainInformation, DomainInformation,
@ -52,9 +53,25 @@ class DomainPermission(PermissionsLoginMixin):
if not UserDomainRole.objects.filter(user=self.request.user, domain__id=pk).exists(): if not UserDomainRole.objects.filter(user=self.request.user, domain__id=pk).exists():
return False return False
# test if domain in editable state
if not self.in_editable_state(pk):
return False
# if we need to check more about the nature of role, do it here. # if we need to check more about the nature of role, do it here.
return True return True
def in_editable_state(self, pk):
"""Is the domain in an editable state"""
requested_domain = None
if Domain.objects.filter(id=pk).exists():
requested_domain = Domain.objects.get(id=pk)
# if domain is editable return true
if requested_domain and requested_domain.is_editable():
return True
return False
def can_access_other_user_domains(self, pk): def can_access_other_user_domains(self, pk):
"""Checks to see if an authorized user (staff or superuser) """Checks to see if an authorized user (staff or superuser)
can access a domain that they did not create or was invited to. can access a domain that they did not create or was invited to.