Replace decorators for dashboard and search with django-rules decorators,...

Replace decorators for dashboard and search with django-rules decorators, adding view_dashboard and search rules and additional global permission search

Replace decorators for dashboard and search with django-rules decorators,...
c48d8134 · Hangzhi Yu · 79912be6 · c48d8134 · c48d8134 · c48d8134
Commit c48d8134 authored 5 years ago by Hangzhi Yu
--- a/aleksis/core/models.py
+++ b/aleksis/core/models.py
@@ -582,4 +582,5 @@ class GlobalPermissions(ExtensibleModel):
            ("link_persons_accounts", _("Can link persons to accounts")),
            ("manage_data", _("Can manage data")),
            ("impersonate", _("Can impersonate")),
+            ("search", _("Can use search")),
        )
--- a/aleksis/core/rules.py
+++ b/aleksis/core/rules.py
@@ -12,6 +12,13 @@ from aleksis.core.util.predicates import (
 add_perm("core", always_allow)
+# View dashboard
+add_perm("core.view_dashboard", has_person_predicate)
+# Use search
+search_predicate = has_person_predicate & has_global_perm("core.search")
+add_perm("core.search", search_predicate)
 # View persons
 view_persons_predicate = has_person_predicate & (
    has_global_perm("core.view_person") | has_any_object("core.view_person", Person)

--- a/aleksis/core/views.py
+++ b/aleksis/core/views.py
@@ -26,7 +26,7 @@ from .tables import GroupsTable, PersonsTable
 from .util import messages
-@person_required
+@permission_required("core.view_dashboard")
 def index(request: HttpRequest) -> HttpResponse:
    context = {}
@@ -347,7 +347,7 @@ def delete_announcement(request: HttpRequest, pk: int) -> HttpResponse:
    return redirect("announcements")
-@login_required
+@permission_required("core.search")
 def searchbar_snippets(request: HttpRequest) -> HttpResponse:
    query = request.GET.get('q', '')
    limit = int(request.GET.get('limit', '5'))