mirror of
https://gitlab.com/allianceauth/allianceauth.git
synced 2025-07-09 12:30:15 +02:00
4ae450f963
* Add open/hidden group membership display and remove * Include requestable groups other than open * Prevent users requesting or leaving non-joinable groups I have not prevented users joining hidden groups however, as there may be some use cases where the direct link is provided for users to request access to the group. Also prevent users generating leave requests for groups they are not a member of. * Refactor Group extension models into a single OneToOne model Added group leader field * Add blankable fields * Switched to use navactive for menu highlighting * Consolidate member state checking for easier code reuse * Added support for group leaders to manage groups * Added info log when a user removes someone from a group * Add ordering to group member list
57 lines
2.0 KiB
Python
57 lines
2.0 KiB
Python
from django.contrib.auth.models import Group
|
|
from django.conf import settings
|
|
from authentication.managers import UserState
|
|
|
|
class GroupManager:
|
|
def __init__(self):
|
|
pass
|
|
|
|
@staticmethod
|
|
def get_joinable_groups():
|
|
return Group.objects.exclude(authgroup__internal=True)
|
|
|
|
@staticmethod
|
|
def get_group_leaders_groups(user):
|
|
return Group.objects.filter(authgroup__group_leaders__in=[user])
|
|
|
|
@staticmethod
|
|
def joinable_group(group):
|
|
"""
|
|
Check if a group is a user joinable group, i.e.
|
|
not an internal group for Corp, Alliance, Members etc
|
|
:param group: django.contrib.auth.models.Group object
|
|
:return: bool True if its joinable, False otherwise
|
|
"""
|
|
return not group.authgroup.internal
|
|
|
|
@staticmethod
|
|
def has_management_permission(user):
|
|
return user.has_perm('auth.group_management')
|
|
|
|
@classmethod
|
|
def can_manage_groups(cls, user):
|
|
"""
|
|
For use with user_passes_test decorator.
|
|
Check if the user can manage groups. Either has the
|
|
auth.group_management permission or is a leader of at least one group
|
|
and is also a Member.
|
|
:param user: django.contrib.auth.models.User for the request
|
|
:return: bool True if user can manage groups, False otherwise
|
|
"""
|
|
if user.is_authenticated:
|
|
return cls.has_management_permission(user) or (user.leads_groups.all() and UserState.member_state(user))
|
|
return False
|
|
|
|
@classmethod
|
|
def can_manage_group(cls, user, group):
|
|
"""
|
|
Check user has permission to manage the given group
|
|
:param user: User object to test permission of
|
|
:param group: Group object the user is attempting to manage
|
|
:return: True if the user can manage the group
|
|
"""
|
|
if user.is_authenticated:
|
|
return cls.has_management_permission(user) or (
|
|
user.leads_groups.filter(group=group).exists() and UserState.member_state(user))
|
|
return False
|