mirror of
https://github.com/cisagov/manage.get.gov.git
synced 2025-05-21 11:59:24 +02:00
Set perms on staff fixtures to be able to change the user status
This commit is contained in:
Rachid Mrad
parent
0ed550b327
commit
494c516142
2 changed files with 51 additions and 3 deletions
|
|
@ -134,10 +134,51 @@ class MyUserAdmin(BaseUserAdmin):
|
||||||
("Important dates", {"fields": ("last_login", "date_joined")}),
|
("Important dates", {"fields": ("last_login", "date_joined")}),
|
||||||
)
|
)
|
||||||
|
|
||||||
|
analyst_fieldsets = (
|
||||||
|
(
|
||||||
|
None,
|
||||||
|
{"fields": ("password", "status")},
|
||||||
|
),
|
||||||
|
("Personal Info", {"fields": ("first_name", "last_name", "email")}),
|
||||||
|
(
|
||||||
|
"Permissions",
|
||||||
|
{
|
||||||
|
"fields": (
|
||||||
|
"is_active",
|
||||||
|
"is_staff",
|
||||||
|
"is_superuser",
|
||||||
|
)
|
||||||
|
},
|
||||||
|
),
|
||||||
|
("Important dates", {"fields": ("last_login", "date_joined")}),
|
||||||
|
)
|
||||||
|
|
||||||
|
analyst_readonly_fields = [
|
||||||
|
"password",
|
||||||
|
"Personal Info",
|
||||||
|
"first_name",
|
||||||
|
"last_name",
|
||||||
|
"email",
|
||||||
|
"Permissions",
|
||||||
|
"is_active",
|
||||||
|
"is_staff",
|
||||||
|
"is_superuser",
|
||||||
|
"Important dates",
|
||||||
|
"last_login",
|
||||||
|
"date_joined",
|
||||||
|
]
|
||||||
|
|
||||||
def get_list_display(self, request):
|
def get_list_display(self, request):
|
||||||
if not request.user.is_superuser:
|
if not request.user.is_superuser:
|
||||||
# Customize the list display for staff users
|
# Customize the list display for staff users
|
||||||
return ("email", "first_name", "last_name", "is_staff", "is_superuser")
|
return (
|
||||||
|
"email",
|
||||||
|
"first_name",
|
||||||
|
"last_name",
|
||||||
|
"is_staff",
|
||||||
|
"is_superuser",
|
||||||
|
"status",
|
||||||
|
)
|
||||||
|
|
||||||
# Use the default list display for non-staff users
|
# Use the default list display for non-staff users
|
||||||
return super().get_list_display(request)
|
return super().get_list_display(request)
|
||||||
|
|
@ -146,11 +187,18 @@ class MyUserAdmin(BaseUserAdmin):
|
||||||
if not request.user.is_superuser:
|
if not request.user.is_superuser:
|
||||||
# If the user doesn't have permission to change the model,
|
# If the user doesn't have permission to change the model,
|
||||||
# show a read-only fieldset
|
# show a read-only fieldset
|
||||||
return ((None, {"fields": []}),)
|
return self.analyst_fieldsets
|
||||||
|
|
||||||
# If the user has permission to change the model, show all fields
|
# If the user has permission to change the model, show all fields
|
||||||
return super().get_fieldsets(request, obj)
|
return super().get_fieldsets(request, obj)
|
||||||
|
|
||||||
|
def get_readonly_fields(self, request, obj=None):
|
||||||
|
if request.user.is_superuser:
|
||||||
|
return () # No read-only fields for superusers
|
||||||
|
elif request.user.is_staff:
|
||||||
|
return self.analyst_readonly_fields # Read-only fields for staff
|
||||||
|
return () # No read-only fields for other users
|
||||||
|
|
||||||
|
|
||||||
class HostIPInline(admin.StackedInline):
|
class HostIPInline(admin.StackedInline):
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -138,7 +138,7 @@ class UserFixture:
|
||||||
"permissions": ["change_domainapplication"],
|
"permissions": ["change_domainapplication"],
|
||||||
},
|
},
|
||||||
{"app_label": "registrar", "model": "domain", "permissions": ["view_domain"]},
|
{"app_label": "registrar", "model": "domain", "permissions": ["view_domain"]},
|
||||||
{"app_label": "registrar", "model": "user", "permissions": ["view_user"]},
|
{"app_label": "registrar", "model": "user", "permissions": ["change_user"]},
|
||||||
]
|
]
|
||||||
|
|
||||||
@classmethod
|
@classmethod
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue