Skip to content

erp5
erp5
Commit aea026be authored by wenjie.zheng's avatar wenjie.zheng
Browse files
Options

Workflow.py: get role_list from site/acl_users.

parent b7740671
Show whitespace changes
Inline Side-by-side
Showing with 6 additions and 9 deletions
product/ERP5Workflow/Document/Workflow.py
View file @ aea026be
...@@ -56,12 +56,10 @@ class Workflow(XMLObject): ...@@ -56,12 +56,10 @@ class Workflow(XMLObject):
isRADContent = 1 isRADContent = 1
### zwj: for security issue ### zwj: for security issue
managed_permission = () managed_permission_list = ()
managed_role = () managed_role = ()
erp5_permission_roles = {} # { permission: [role] or (role,) } erp5_permission_roles = {} # { permission: [role] or (role,) }
role_list = sorted(["Anonymous", "Assignee", "Assignor", "Associate",
"Auditor", "Authenticated", "Author", "Manager",
"Member", "Owner", "Reviewer"])
# Declarative security # Declarative security
security = ClassSecurityInfo() security = ClassSecurityInfo()
security.declareObjectProtected(Permissions.AccessContentsInformation) security.declareObjectProtected(Permissions.AccessContentsInformation)
...@@ -81,7 +79,6 @@ class Workflow(XMLObject): ...@@ -81,7 +79,6 @@ class Workflow(XMLObject):
""" """
state_bc_id = self.getStateBaseCategory() state_bc_id = self.getStateBaseCategory()
document.setCategoryMembership(state_bc_id, self.getSource()) document.setCategoryMembership(state_bc_id, self.getSource())
object = self.getStateChangeInformation(document, self.getSourceValue()) object = self.getStateChangeInformation(document, self.getSourceValue())
# Initialize workflow history # Initialize workflow history
...@@ -139,7 +136,7 @@ class Workflow(XMLObject): ...@@ -139,7 +136,7 @@ class Workflow(XMLObject):
return DateTime() return DateTime()
def getManagedPermissionList(self): def getManagedPermissionList(self):
return self.managed_permission return self.managed_permission_list
def getStateChangeInformation(self, document, state, transition=None): def getStateChangeInformation(self, document, state, transition=None):
""" """
...@@ -170,7 +167,8 @@ class Workflow(XMLObject): ...@@ -170,7 +167,8 @@ class Workflow(XMLObject):
"""Changes the object permissions according to the current state. """Changes the object permissions according to the current state.
""" """
changed = 0 changed = 0
sdef = sdef = document._getDefaultAcquiredValue(self.getStateBaseCategory()) sdef = document._getDefaultAcquiredValue(self.getStateBaseCategory())
managed_permission = self.getManagedPermissionList()
if sdef is None: if sdef is None:
return 0 return 0
### zwj: get all matrix cell objects ### zwj: get all matrix cell objects
...@@ -179,7 +177,6 @@ class Workflow(XMLObject): ...@@ -179,7 +177,6 @@ class Workflow(XMLObject):
for perm_role in permission_role_matrix_cells: for perm_role in permission_role_matrix_cells:
permission,role = perm_role.getPermissionRole() permission,role = perm_role.getPermissionRole()
### zwj: double check the right role and permission are obtained ### zwj: double check the right role and permission are obtained
#LOG('zwj: Assign %s to %s' %(role, permission), WARNING, "in Workflow.")
if permission != 'None': if permission != 'None':
if self.erp5_permission_roles.has_key(permission): if self.erp5_permission_roles.has_key(permission):
self.erp5_permission_roles[permission] += (role,) self.erp5_permission_roles[permission] += (role,)
...@@ -194,7 +191,7 @@ class Workflow(XMLObject): ...@@ -194,7 +191,7 @@ class Workflow(XMLObject):
return changed return changed
def getRoleList(self): def getRoleList(self):
return self.role_list return sorted(self.getPortalObject().getDefaultModule('acl_users').valid_roles())
### Security feature end ### Security feature end
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7