| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141 |
- from .tool.func import *
- def give_acl_2(name):
- with get_db_connect() as conn:
- curs = conn.cursor()
- check_ok = ''
- ip = ip_check()
- if flask.request.method == 'POST':
- check_data = 'acl (' + name + ')'
- else:
- check_data = None
- user_data = re.search(r'^user:(.+)$', name)
- if user_data:
- if check_data and ip_or_user(ip) != 0:
- return redirect('/login')
- if user_data.group(1) != ip_check():
- if admin_check(5) != 1:
- if check_data:
- return re_error('/error/3')
- else:
- check_ok = 'disabled'
- else:
- if admin_check(5) != 1:
- if check_data:
- return re_error('/error/3')
- else:
- check_ok = 'disabled'
- if flask.request.method == 'POST':
- acl_data = [['decu', flask.request.form.get('decu', '')]]
- acl_data += [['document_edit_acl', flask.request.form.get('document_edit_acl', '')]]
- acl_data += [['document_move_acl', flask.request.form.get('document_move_acl', '')]]
- acl_data += [['document_delete_acl', flask.request.form.get('document_delete_acl', '')]]
- acl_data += [['dis', flask.request.form.get('dis', '')]]
- acl_data += [['view', flask.request.form.get('view', '')]]
- acl_data += [['why', flask.request.form.get('why', '')]]
- for i in acl_data:
- curs.execute(db_change("select title from acl where title = ? and type = ?"), [name, i[0]])
- if curs.fetchall():
- curs.execute(db_change("update acl set data = ? where title = ? and type = ?"), [i[1], name, i[0]])
- else:
- curs.execute(db_change("insert into acl (title, data, type) values (?, ?, ?)"), [name, i[1], i[0]])
- all_d = ''
- for i in ['decu', 'document_edit_acl', 'document_move_acl', 'document_delete_acl', 'dis', 'view']:
- if flask.request.form.get(i, '') == '':
- all_d += 'normal'
- if i != 'view':
- all_d += ' | '
- else:
- all_d += flask.request.form.get(i, '')
- if i != 'view':
- all_d += ' | '
- admin_check(5, check_data + ' (' + all_d + ')')
- conn.commit()
- return redirect('/acl/' + url_pas(name))
- else:
- data = ''
- acl_list = get_acl_list('user') if re.search(r'^user:', name) else get_acl_list()
- if not re.search(r'^user:', name):
- acl_get_list = [
- [load_lang('view_acl'), 'view', '2', '1.'],
- [load_lang('document_acl'), 'decu', '3', '1.1.'],
- [load_lang('document_edit_acl'), 'document_edit_acl', '4', '1.1.1.'],
- [load_lang('document_move_acl'), 'document_move_acl', '4', '1.1.2.'],
- [load_lang('document_delete_acl'), 'document_delete_acl', '4', '1.1.3.'],
- [load_lang('discussion_acl'), 'dis', '2', '2.'],
- ]
- else:
- acl_get_list = [
- [load_lang('document_acl'), 'decu', '2', '1.']
- ]
- for i in acl_get_list:
- data += '' + \
- '<h' + i[2] + '>' + i[0] + (' (' + load_lang('beta') + ')' if i[2] == '4' else '') + '</h' + i[2] + '>' + \
- '<hr class="main_hr">' + \
- '<select name="' + i[1] + '" ' + check_ok + '>' + \
- ''
- curs.execute(db_change("select data from acl where title = ? and type = ?"), [name, i[1]])
- acl_data = curs.fetchall()
- for data_list in acl_list:
- check = 'selected="selected"' if acl_data and acl_data[0][0] == data_list else ''
- data += '<option value="' + data_list + '" ' + check + '>' + (data_list if data_list != '' else 'normal') + '</option>'
- data += '</select>'
- data += '<hr class="main_hr">'
- curs.execute(db_change("select data from acl where title = ? and type = ?"), [name, 'why'])
- acl_data = curs.fetchall()
- acl_why = html.escape(acl_data[0][0]) if acl_data else ''
- data += '' + \
- '<h2>' + load_lang('why') + '</h2>' + \
- '<input value="' + acl_why + '" placeholder="' + load_lang('why') + '" name="why" ' + check_ok + '>' + \
- '<hr class="main_hr">' + \
- ''
- data += '''
- <h2>''' + load_lang('explanation') + '''</h2>
- <span id="exp"></span>
- <ul class="opennamu_ul">
- <li>normal : ''' + load_lang('unset') + '''</li>
- <li>admin : ''' + load_lang('admin_acl') + '''</li>
- <li>user : ''' + load_lang('member_acl') + '''</li>
- <li>50_edit : ''' + load_lang('50_edit_acl') + '''</li>
- <li>all : ''' + load_lang('all_acl') + '''</li>
- <li>email : ''' + load_lang('email_acl') + '''</li>
- <li>owner : ''' + load_lang('owner_acl') + '''</li>
- <li>ban : ''' + load_lang('ban_acl') + '''</li>
- <li>before : ''' + load_lang('before_acl') + '''</li>
- <li>30_day : ''' + load_lang('30_day_acl') + '''</li>
- <li>ban_admin : ''' + load_lang('ban_admin_acl') + '''</li>
- <li>not_all : ''' + load_lang('not_all_acl') + '''</li>
- </ul>
- '''
- return easy_minify(flask.render_template(skin_check(),
- imp = [name, wiki_set(), wiki_custom(), wiki_css(['(' + load_lang('acl') + ')', 0])],
- data = '''
- <form method="post">
- <a href="/setting/acl">(''' + load_lang('main_acl_setting') + ''')</a>
- <hr class="main_hr">
- ''' + render_simple_set(data) + '''
- <button type="submit" ''' + check_ok + '''>''' + load_lang('save') + '''</button>
- </form>
- ''',
- menu = [
- ['w/' + url_pas(name), load_lang('document')],
- ['manager', load_lang('admin')],
- ['admin_log?search=' + url_pas('acl (' + name + ')'), load_lang('acl_record')]
- ]
- ))
|
