| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137 |
- from .tool.func import *
- def give_acl_2(conn, name):
- curs = conn.cursor()
- check_ok = ''
-
- if flask.request.method == 'POST':
- check_data = 'acl (' + name + ')'
- else:
- check_data = None
-
- user_data = re.search('^user:(.+)$', name)
- if user_data:
- if check_data and custom()[2] == 0:
- return redirect('/login')
-
- if user_data.groups()[0] != ip_check():
- if admin_check(5, check_data) != 1:
- if check_data:
- return re_error('/error/3')
- else:
- check_ok = 'disabled'
- else:
- if admin_check(5, check_data) != 1:
- if check_data:
- return re_error('/error/3')
- else:
- check_ok = 'disabled'
- if flask.request.method == 'POST':
- if flask.request.form.get('view', None):
- if flask.request.form.get('dec', '') != flask.request.form.get('view', ''):
- dec = flask.request.form.get('view', '')
- view = flask.request.form.get('view', '')
- if view == 'normal':
- dec = flask.request.form.get('dec', '')
- elif view == 'user':
- if dec == 'admin':
- dec = flask.request.form.get('dec', '')
- else:
- dec = flask.request.form.get('dec', '')
- view = flask.request.form.get('view', '')
- else:
- dec = flask.request.form.get('dec', '')
- view = flask.request.form.get('view', '')
- curs.execute("select title from acl where title = ?", [name])
- if curs.fetchall():
- curs.execute("update acl set dec = ? where title = ?", [dec, name])
- curs.execute("update acl set dis = ? where title = ?", [flask.request.form.get('dis', ''), name])
- curs.execute("update acl set why = ? where title = ?", [flask.request.form.get('why', ''), name])
- curs.execute("update acl set view = ? where title = ?", [view, name])
- else:
- curs.execute("insert into acl (title, dec, dis, why, view) values (?, ?, ?, ?, ?)", [name, dec, flask.request.form.get('dis', ''), flask.request.form.get('why', ''), view])
-
- curs.execute("select title from acl where title = ? and dec = '' and dis = ''", [name])
- if curs.fetchall():
- curs.execute("delete from acl where title = ?", [name])
- conn.commit()
-
- return redirect('/acl/' + url_pas(name))
- else:
- data = '<h2>' + load_lang('document_acl') + '</h2><hr class=\"main_hr\"><select name="dec" ' + check_ok + '>'
-
- if re.search('^user:', name):
- acl_list = [['', 'normal'], ['user', 'member'], ['all', 'all']]
- else:
- acl_list = [['', 'normal'], ['user', 'member'], ['admin', 'admin'], ['50_edit', '50 edit']]
-
- curs.execute("select dec from acl where title = ?", [name])
- acl_data = curs.fetchall()
- for data_list in acl_list:
- if acl_data and acl_data[0][0] == data_list[0]:
- check = 'selected="selected"'
- else:
- check = ''
-
- data += '<option value="' + data_list[0] + '" ' + check + '>' + data_list[1] + '</option>'
-
- data += '</select>'
-
- if not re.search('^user:', name):
- data += '<hr class=\"main_hr\"><h2>' + load_lang('discussion_acl') + '</h2><hr class=\"main_hr\"><select name="dis" ' + check_ok + '>'
-
- curs.execute("select dis, why, view from acl where title = ?", [name])
- acl_data = curs.fetchall()
- for data_list in acl_list:
- if acl_data and acl_data[0][0] == data_list[0]:
- check = 'selected="selected"'
- else:
- check = ''
-
- data += '<option value="' + data_list[0] + '" ' + check + '>' + data_list[1] + '</option>'
-
- data += '</select>'
- data += '<hr class=\"main_hr\"><h2>' + load_lang('view_acl') + '</h2><hr class=\"main_hr\"><select name="view" ' + check_ok + '>'
- for data_list in acl_list:
- if acl_data and acl_data[0][2] == data_list[0]:
- check = 'selected="selected"'
- else:
- check = ''
-
- data += '<option value="' + data_list[0] + '" ' + check + '>' + data_list[1] + '</option>'
-
- data += '''
- </select>
- <h2>''' + load_lang('explanation') + '''</h2>
- <ul>
- <li>normal : ''' + load_lang('default') + '''</li>
- <li>admin : ''' + load_lang('admin_acl') + '''</li>
- <li>member : ''' + load_lang('member_acl') + '''</li>
- <li>50 edit : ''' + load_lang('50_edit_acl') + '''</li>
- <li>all : ''' + load_lang('all_acl') + '''</li>
- </ul>
- '''
-
- if check_ok == '':
- if acl_data:
- data += '<hr class=\"main_hr\"><input value="' + html.escape(acl_data[0][1]) + '" placeholder="' + load_lang('why') + '" name="why" type="text" ' + check_ok + '>'
- else:
- data += '<hr class=\"main_hr\"><input placeholder="' + load_lang('why') + '" name="why" type="text" ' + check_ok + '>'
-
- return easy_minify(flask.render_template(skin_check(),
- imp = [name, wiki_set(), custom(), other2([' (' + load_lang('acl') + ')', 0])],
- data = '''
- <form method="post">
- ''' + data + '''
- <hr class=\"main_hr\">
- <button type="submit" ''' + check_ok + '''>''' + load_lang('save') + '''</button>
- </form>
- ''',
- menu = [['w/' + url_pas(name), load_lang('document')], ['manager', load_lang('admin')]]
- ))
|
