221V
/
Misago


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291
							from django import forms
from django.core.exceptions import PermissionDenied
from django.utils import timezone
from django.utils.translation import ugettext_lazy as _, ungettext

from misago.acl import algebra
from misago.acl.decorators import return_boolean
from misago.categories.models import Category, CategoryRole
from misago.categories.permissions import get_categories_roles
from misago.core.forms import YesNoSwitch
from misago.threads.models import Post


__all__nope = [
    'allow_select_answer',
    'can_select_answer',
    'allow_remove_answer',
    'can_remove_answer',
]


class CategoryPermissionsForm(forms.Form):
    legend = _("Answers")

    can_set_answers = forms.TypedChoiceField(
        label=_("Can set answers"),
        coerce=int,
        initial=0,
        choices=[
            (0, _("No")),
            (1, _("Own threads")),
            (2, _("All threads")),
        ],
    )
    can_change_answers = forms.TypedChoiceField(
        label=_("Can change answers"),
        coerce=int,
        initial=0,
        choices=[
            (0, _("No")),
            (1, _("Own threads")),
            (2, _("All threads")),
        ],
    )
    answer_change_time = forms.IntegerField(
        label=_("Time limit for owned thread answer change, in minutes"),
        help_text=_("Enter 0 to don't limit time for changing own thread answer."),
        initial=0,
        min_value=0,
    )


def change_permissions_form(role):
    if isinstance(role, CategoryRole):
        return CategoryPermissionsForm
    else:
        return None


def build_acl(acl, roles, key_name):
    categories_roles = get_categories_roles(roles)
    categories = list(Category.objects.all_categories(include_root=True))

    for category in categories:
        category_acl = acl['categories'].get(category.pk, {'can_browse': 0})
        if category_acl['can_browse']:
            category_acl = acl['categories'][category.pk] = build_category_acl(
                category_acl, category, categories_roles, key_name
            )

    return acl


def build_category_acl(acl, category, categories_roles, key_name):
    category_roles = categories_roles.get(category.pk, [])

    final_acl = {
        'can_set_answers': 0,
        'can_change_answers': 0,
        'answer_change_time': 0,
    }
    final_acl.update(acl)

    algebra.sum_acls(
        final_acl,
        roles=category_roles,
        key=key_name,
        can_set_answers=algebra.greater,
        can_change_answers=algebra.greater,
        answer_change_time=algebra.greater_or_zero,
    )

    return final_acl


def add_acl_to_post(user, post):
    post.acl.update({
        'can_set_answer': can_set_answer(user, post),
        'can_unset_answer': can_unset_answer(user, post),
    })


def register_with(registry):
    registry.acl_annotator(Post, add_acl_to_post)


def allow_set_answer(user, target):
    if user.is_anonymous:
        raise PermissionDenied(_("You have to sign in to set posts as answers."))

    if target.is_event:
        raise PermissionDenied(_("Events can't be set as answers."))

    category_acl = user.acl_cache['categories'].get(
        target.category_id, {
            'can_set_answers': 0,
        }
    )

    if not category_acl['can_set_answers']:
        raise PermissionDenied(
            _(
                'You don\'t have permission to set answers in the "%(category)s" category.'
            ) % {
                'category': target.category,
            }
        )

    if category_acl['can_set_answers'] == 1 and target.thread.starter != user:
        raise PermissionDenied(
            _(
                "You dont't have permission to set this post as an answer "
                "because you are not the thread starter."
            )
        )

    if target.is_first_post:
        raise PermissionDenied(_("First post in a thread can't be set as an answer."))

    if target.is_hidden:
        raise PermissionDenied(_("Hidden posts can't be set as answers."))

    if target.is_unapproved:
        raise PermissionDenied(_("Unapproved posts can't be set as answers."))

    if target.is_answer:
        raise PermissionDenied(_("This post is already set as an answer."))

    if target.thread.answer_id:
        if not category_acl['can_change_answers']:
            raise PermissionDenied(_("You don't have permission to change selected answer."))

        if category_acl['can_change_answers'] == 1 and not has_time_to_change_answer(user, target):
            raise PermissionDenied(
                ungettext(
                    (
                        "You don't have permission to change thread's answer that was set "
                        "for more than %(minutes)s minute."),
                    (
                        "You don't have permission to change thread's answer that was set "
                        "for more than %(minutes)s minutes."),
                    category_acl['answer_change_time'],
                ) % {
                    'minutes': category_acl['answer_change_time'],
                }
            )

        if target.thread.answer_is_protected and not category_acl['can_protect_posts']:
            raise PermissionDenied(
                _(
                    "You don't have permission to change this thread's answer because moderator "
                    "has protected it."
                )
            )
        
    if not category_acl['can_close_threads']:
        if target.category.is_closed:
            raise PermissionDenied(
                _(
                    'You can\'t sets this post as an answer because it\'s category '
                    '"%(category)s" is closed.'
                ) % {
                    'category': target.category,
                }
            )
        if target.thread.is_closed:
            raise PermissionDenied(
                _(
                    "You can't set this post as an answer because it's thread is closed and you "
                    "don't have permission to open it."
                )
            )

    if target.is_protected and not category_acl['can_protect_posts']:
        raise PermissionDenied(
            _("You can't sets this post as an answer because moderator has protected it.")
        )


can_set_answer = return_boolean(allow_set_answer)


def allow_unset_answer(user, target):
    if user.is_anonymous:
        raise PermissionDenied(_("You have to sign in to unset threads answers."))

    category_acl = user.acl_cache['categories'].get(
        target.category_id, {
            'can_change_answers': 0,
        }
    )

    if not category_acl['can_change_answers']:
        raise PermissionDenied(
            _(
                'You don\'t have permission to unset threads answers in the "%(category)s" '
                'category.'
            ) % {
                'category': target.category,
            }
        )

    if not target.is_answer:
        raise PermissionDenied(
            _(
                "You can't unset."
            )
        )

    if category_acl['can_change_answers'] == 1:
        if target.thread.starter != user:
            raise PermissionDenied(
                _(
                    "You dont't have permission to unset this answer because "
                    "you are not a thread starter."
                )
            )
        if not has_time_to_change_answer(user, target):
            raise PermissionDenied(
                ungettext(
                    (
                        "You don't have permission to change thread's answer that was set "
                        "for more than %(minutes)s minute."),
                    (
                        "You don't have permission to change thread's answer that was set "
                        "for more than %(minutes)s minutes."),
                    category_acl['answer_change_time'],
                ) % {
                    'minutes': category_acl['answer_change_time'],
                }
            )
        
    if not category_acl['can_close_threads']:
        if target.category.is_closed:
            raise PermissionDenied(
                _(
                    'You can\'t unset this answer because it\'s scategory "%(category)s" is closed.'
                ) % {
                    'category': target.category,
                }
            )
        if target.thread.is_closed:
            raise PermissionDenied(
                _(
                    "You don't have permission to unset this answer because it's thread is closed "
                    "and you don't have permission to open it."
                )
            )

    if target.is_protected and not category_acl['can_protect_posts']:
        raise PermissionDenied(
            _(
                "You don't have permission to unset this thread's answer because moderator has "
                "protected it."
            )
        )


can_unset_answer = return_boolean(allow_unset_answer)


def has_time_to_change_answer(user, target):
    category_acl = user.acl_cache['categories'].get(target.category_id, {})
    change_time = category_acl.get('answer_change_time', 0)

    if change_time:
        diff = timezone.now() - target.thread.answer_set_on
        diff_minutes = int(diff.total_seconds() / 60)
        return diff_minutes < change_time
    else:
        return True