authentik/passbook/admin/views/policy.py

"""passbook Policy administration"""
from django.contrib import messages
from django.contrib.auth.mixins import LoginRequiredMixin
from django.contrib.auth.mixins import \
    PermissionRequiredMixin as DjangoPermissionRequiredMixin
from django.contrib.messages.views import SuccessMessageMixin
from django.http import Http404
from django.urls import reverse_lazy
from django.utils.translation import ugettext as _
from django.views.generic import (DeleteView, FormView, ListView,
                                  UpdateView)
from django.views.generic.detail import DetailView
from guardian.mixins import PermissionListMixin, PermissionRequiredMixin

from passbook.admin.forms.policies import PolicyTestForm
from passbook.core.models import Policy
from passbook.lib.utils.reflection import path_to_class
from passbook.lib.views import CreateAssignPermView
from passbook.policies.engine import PolicyEngine


class PolicyListView(LoginRequiredMixin, PermissionListMixin, ListView):
    """Show list of all policies"""

    model = Policy
    permission_required = 'passbook_core.view_policy'

    template_name = 'administration/policy/list.html'

    def get_context_data(self, **kwargs):
        kwargs['types'] = {
            x.__name__: x._meta.verbose_name for x in Policy.__subclasses__()}
        return super().get_context_data(**kwargs)

    def get_queryset(self):
        return super().get_queryset().order_by('order').select_subclasses()


class PolicyCreateView(SuccessMessageMixin, LoginRequiredMixin,
                       DjangoPermissionRequiredMixin, CreateAssignPermView):
    """Create new Policy"""

    model = Policy
    permission_required = 'passbook_core.add_policy'
    permissions = [
        'passbook_core.view_policy',
        'passbook_core.change_policy',
        'passbook_core.delete_policy',
    ]

    template_name = 'generic/create.html'
    success_url = reverse_lazy('passbook_admin:policies')
    success_message = _('Successfully created Policy')

    def get_form_class(self):
        policy_type = self.request.GET.get('type')
        model = next(x for x in Policy.__subclasses__()
                     if x.__name__ == policy_type)
        if not model:
            raise Http404
        return path_to_class(model.form)


class PolicyUpdateView(SuccessMessageMixin, LoginRequiredMixin,
                       PermissionRequiredMixin, UpdateView):
    """Update policy"""

    model = Policy
    permission_required = 'passbook_core.change_policy'

    template_name = 'generic/update.html'
    success_url = reverse_lazy('passbook_admin:policies')
    success_message = _('Successfully updated Policy')

    def get_form_class(self):
        form_class_path = self.get_object().form
        form_class = path_to_class(form_class_path)
        return form_class

    def get_object(self, queryset=None):
        return Policy.objects.filter(pk=self.kwargs.get('pk')).select_subclasses().first()


class PolicyDeleteView(SuccessMessageMixin, LoginRequiredMixin,
                       PermissionRequiredMixin, DeleteView):
    """Delete policy"""

    model = Policy
    permission_required = 'passbook_core.delete_policy'

    template_name = 'generic/delete.html'
    success_url = reverse_lazy('passbook_admin:policies')
    success_message = _('Successfully deleted Policy')

    def get_object(self, queryset=None):
        return Policy.objects.filter(pk=self.kwargs.get('pk')).select_subclasses().first()

    def delete(self, request, *args, **kwargs):
        messages.success(self.request, self.success_message)
        return super().delete(request, *args, **kwargs)


class PolicyTestView(LoginRequiredMixin, DetailView, PermissionRequiredMixin, FormView):
    """View to test policy(s)"""

    model = Policy
    form_class = PolicyTestForm
    permission_required = 'passbook_core.view_policy'
    template_name = 'administration/policy/test.html'
    object = None

    def get_object(self, queryset=None):
        return Policy.objects.filter(pk=self.kwargs.get('pk')).select_subclasses().first()

    def get_context_data(self, **kwargs):
        kwargs['policy'] = self.get_object()
        return super().get_context_data(**kwargs)

    def post(self, *args, **kwargs):
        self.object = self.get_object()
        return super().post(*args, **kwargs)

    def form_valid(self, form):
        policy = self.get_object()
        user = form.cleaned_data.get('user')
        policy_engine = PolicyEngine([policy])
        policy_engine.for_user(user).with_request(self.request).build()
        result = policy_engine.passing
        if result:
            messages.success(self.request, _('User successfully passed policy.'))
        else:
            messages.error(self.request, _("User didn't pass policy."))
        return self.render_to_response(self.get_context_data(form=form, result=result))
Rule -> Policies 2019-02-16 09:24:31 +00:00			`"""passbook Policy administration"""`
			`from django.contrib import messages`
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`from django.contrib.auth.mixins import LoginRequiredMixin`
			`from django.contrib.auth.mixins import \`
			`PermissionRequiredMixin as DjangoPermissionRequiredMixin`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`from django.contrib.messages.views import SuccessMessageMixin`
			`from django.http import Http404`
			`from django.urls import reverse_lazy`
			`from django.utils.translation import ugettext as _`
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`from django.views.generic import (DeleteView, FormView, ListView,`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`UpdateView)`
			`from django.views.generic.detail import DetailView`
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`from guardian.mixins import PermissionListMixin, PermissionRequiredMixin`
Rule -> Policies 2019-02-16 09:24:31 +00:00
			`from passbook.admin.forms.policies import PolicyTestForm`
			`from passbook.core.models import Policy`
			`from passbook.lib.utils.reflection import path_to_class`
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`from passbook.lib.views import CreateAssignPermView`
*(minor): small refactor 2019-10-07 14:33:48 +00:00			`from passbook.policies.engine import PolicyEngine`
Rule -> Policies 2019-02-16 09:24:31 +00:00

admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`class PolicyListView(LoginRequiredMixin, PermissionListMixin, ListView):`
fix inconsistent naming again 2019-02-16 10:13:00 +00:00			`"""Show list of all policies"""`
Rule -> Policies 2019-02-16 09:24:31 +00:00
			`model = Policy`
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`permission_required = 'passbook_core.view_policy'`

Rule -> Policies 2019-02-16 09:24:31 +00:00			`template_name = 'administration/policy/list.html'`

			`def get_context_data(self, **kwargs):`
			`kwargs['types'] = {`
			`x.__name__: x._meta.verbose_name for x in Policy.__subclasses__()}`
			`return super().get_context_data(**kwargs)`

			`def get_queryset(self):`
			`return super().get_queryset().order_by('order').select_subclasses()`


admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`class PolicyCreateView(SuccessMessageMixin, LoginRequiredMixin,`
			`DjangoPermissionRequiredMixin, CreateAssignPermView):`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`"""Create new Policy"""`

admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`model = Policy`
			`permission_required = 'passbook_core.add_policy'`
			`permissions = [`
			`'passbook_core.view_policy',`
			`'passbook_core.change_policy',`
			`'passbook_core.delete_policy',`
			`]`

Only use one create template, get title from Form's Model 2019-02-27 15:06:20 +00:00			`template_name = 'generic/create.html'`
fix inconsistent naming again 2019-02-16 10:13:00 +00:00			`success_url = reverse_lazy('passbook_admin:policies')`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`success_message = _('Successfully created Policy')`

			`def get_form_class(self):`
			`policy_type = self.request.GET.get('type')`
			`model = next(x for x in Policy.__subclasses__()`
			`if x.__name__ == policy_type)`
			`if not model:`
			`raise Http404`
			`return path_to_class(model.form)`


admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`class PolicyUpdateView(SuccessMessageMixin, LoginRequiredMixin,`
			`PermissionRequiredMixin, UpdateView):`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`"""Update policy"""`

			`model = Policy`
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`permission_required = 'passbook_core.change_policy'`

Rule -> Policies 2019-02-16 09:24:31 +00:00			`template_name = 'generic/update.html'`
fix inconsistent naming again 2019-02-16 10:13:00 +00:00			`success_url = reverse_lazy('passbook_admin:policies')`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`success_message = _('Successfully updated Policy')`

			`def get_form_class(self):`
			`form_class_path = self.get_object().form`
			`form_class = path_to_class(form_class_path)`
			`return form_class`

			`def get_object(self, queryset=None):`
			`return Policy.objects.filter(pk=self.kwargs.get('pk')).select_subclasses().first()`


admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`class PolicyDeleteView(SuccessMessageMixin, LoginRequiredMixin,`
			`PermissionRequiredMixin, DeleteView):`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`"""Delete policy"""`

			`model = Policy`
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`permission_required = 'passbook_core.delete_policy'`

Rule -> Policies 2019-02-16 09:24:31 +00:00			`template_name = 'generic/delete.html'`
fix inconsistent naming again 2019-02-16 10:13:00 +00:00			`success_url = reverse_lazy('passbook_admin:policies')`
Improve partially broken Delete Views, show success message on deletion 2019-02-26 08:46:44 +00:00			`success_message = _('Successfully deleted Policy')`
Rule -> Policies 2019-02-16 09:24:31 +00:00
			`def get_object(self, queryset=None):`
			`return Policy.objects.filter(pk=self.kwargs.get('pk')).select_subclasses().first()`

Improve partially broken Delete Views, show success message on deletion 2019-02-26 08:46:44 +00:00			`def delete(self, request, args, *kwargs):`
			`messages.success(self.request, self.success_message)`
			`return super().delete(request, args, *kwargs)`

Rule -> Policies 2019-02-16 09:24:31 +00:00
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`class PolicyTestView(LoginRequiredMixin, DetailView, PermissionRequiredMixin, FormView):`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`"""View to test policy(s)"""`

			`model = Policy`
			`form_class = PolicyTestForm`
admin(major): rewrite all views to use guardian mixins 2019-10-10 11:01:49 +00:00			`permission_required = 'passbook_core.view_policy'`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`template_name = 'administration/policy/test.html'`
			`object = None`

			`def get_object(self, queryset=None):`
			`return Policy.objects.filter(pk=self.kwargs.get('pk')).select_subclasses().first()`

			`def get_context_data(self, **kwargs):`
			`kwargs['policy'] = self.get_object()`
			`return super().get_context_data(**kwargs)`

			`def post(self, args, *kwargs):`
			`self.object = self.get_object()`
			`return super().post(args, *kwargs)`

			`def form_valid(self, form):`
			`policy = self.get_object()`
			`user = form.cleaned_data.get('user')`
consistently using PolicyEngine 2019-03-10 01:07:18 +00:00			`policy_engine = PolicyEngine([policy])`
			`policy_engine.for_user(user).with_request(self.request).build()`
			`result = policy_engine.passing`
Rule -> Policies 2019-02-16 09:24:31 +00:00			`if result:`
			`messages.success(self.request, _('User successfully passed policy.'))`
			`else:`
			`messages.error(self.request, _("User didn't pass policy."))`
			`return self.render_to_response(self.get_context_data(form=form, result=result))`