OCA
/
server-tools
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1599 Commits
13 Branches
0 Tags
45 MiB
Tree: 73ceb5b98a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '73ceb5b98a'
${ noResults }
server-tools/user_threshold/models/res_users.py

130 lines
4.9 KiB
Raw Normal View History

[ADD] user_threshold: Create module (#836) * [ADD] user_threshold: Create module * [IMP] user_threshold: Fixes per PR * Fix README * Rename poorly named methods * Syntactic sugar * Remove direct SQL in favor of ORM API * Docstrings * [IMP] user_threshold: Fixes per PR * Update verbiage in README * Simplify access check calls * Use the same verbiage throughout error messages * Add Link to related modules in README
7 years ago
  1. # -*- coding: utf-8 -*-
  2. # Copyright 2017 LasLabs Inc.
  3. # License LGPL-3.0 or later (http://www.gnu.org/licenses/lgpl.html).
  5. import os
  6. from csv import reader
  7. from lxml import etree
  9. from odoo import SUPERUSER_ID, _, api, fields, models, registry
  10. from odoo.exceptions import AccessError, ValidationError
  12. from .ir_config_parameter import THRESHOLD_HIDE, MAX_DB_USER_PARAM
  13. from .res_groups import THRESHOLD_MANAGER
  16. class ResUsers(models.Model):
  17. _inherit = 'res.users'
  19. threshold_exempt = fields.Boolean(
  20. 'Exempt User From User Count Thresholds',
  21. )
  23. def __init__(self, pool, cr):
  24. """
  25. Override to check if env var to hide threshold configuration and
  26. reset the database state is set. If it is, run those actions
  27. """
  28. if THRESHOLD_HIDE:
  29. exempt_users_var = os.environ.get('USER_THRESHOLD_USER', '')
  30. exempt_users = reader([exempt_users_var])
  31. with api.Environment.manage():
  32. with registry(cr.dbname).cursor() as new_cr:
  33. new_env = api.Environment(new_cr, SUPERUSER_ID, {})
  34. installed = new_env['ir.module.module'].search_count([
  35. ('name', '=', 'user_threshold'),
  36. ('state', '=', 'installed'),
  37. ])
  38. if installed:
  39. users = new_env['res.users'].search([
  40. ('share', '=', False),
  41. ('threshold_exempt', '=', True),
  42. ])
  43. non_ex = users.filtered(
  44. lambda r: r.login not in exempt_users
  45. )
  46. for user in non_ex:
  47. user.threshold_exempt = False
  48. new_cr.commit()
  50. def _check_thresholds(self):
  51. """
  52. Check to see if any user thresholds are met
  53. Returns:
  54. False when the thresholds aren't met and True when they are
  55. """
  56. domain = [
  57. ('threshold_exempt', '=', False),
  58. ('share', '=', False),
  59. ]
  60. users = self.env['res.users'].search(domain)
  61. max_db_users = int(self.env['ir.config_parameter'].get_param(
  62. MAX_DB_USER_PARAM
  63. ))
  64. if max_db_users > 0 and len(users) >= max_db_users:
  65. return True
  66. company = self.env.user.company_id
  67. company_users = users.filtered(lambda r: r.company_id.id == company.id)
  68. if company.max_users > 0 and len(company_users) >= company.max_users:
  69. return True
  70. return False
  72. @api.multi
  73. def copy(self, default=None):
  74. """
  75. Override method to make sure the Thresholds aren't met before
  76. creating a new user
  77. """
  78. if self._check_thresholds():
  79. raise ValidationError(_(
  80. 'Cannot add user - Maximum number of allowed users reached'
  81. ))
  82. return super(ResUsers, self).copy(default=default)
  84. @api.multi
  85. def create(self, vals):
  86. """
  87. Override method to make sure the Thresholds aren't met before
  88. creating a new user
  89. """
  90. if self._check_thresholds():
  91. raise ValidationError(_(
  92. 'Cannot add user - Maximum number of allowed users reached'
  93. ))
  94. return super(ResUsers, self).create(vals)
  96. @api.model
  97. def fields_view_get(self, view_id=None, view_type='form', toolbar=False,
  98. submenu=False):
  99. """ Hide Max User Field when the env var to hide the field is set """
  100. res = super(ResUsers, self).fields_view_get(
  101. view_id, view_type, toolbar, submenu
  102. )
  103. if THRESHOLD_HIDE:
  104. doc = etree.XML(res['arch'])
  105. for node in doc.xpath("//group[@name='user_threshold']"):
  106. node.getparent().remove(node)
  107. res['arch'] = etree.tostring(doc, pretty_print=True)
  108. return res
  110. @api.multi
  111. def write(self, vals):
  112. """
  113. Override write to verify that membership of the Threshold Manager
  114. group is not able to be set by users outside that group
  115. """
  116. thold_group = self.env.ref(THRESHOLD_MANAGER, raise_if_not_found=False)
  117. if thold_group:
  118. user_is_manager = self.env.user.has_group(THRESHOLD_MANAGER)
  119. if vals.get('threshold_exempt') and not user_is_manager:
  120. raise AccessError(_(
  121. 'You must be a member of the `User Threshold Manager`'
  122. ' group to grant threshold exemptions.'
  123. ))
  124. is_add_group = vals.get('in_group_%s' % thold_group.id)
  125. if is_add_group and not user_is_manager:
  126. raise AccessError(_(
  127. 'You must be a member of the `User Threshold Manager`'
  128. ' group to grant access to it.'
  129. ))
  130. return super(ResUsers, self).write(vals)