damien
/
muk_base
mirror of https://github.com/muk-it/muk_base
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
90 Commits
5 Branches
0 Tags
14 MiB
Tree: bf6fbc6fb1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'bf6fbc6fb1'
${ noResults }
muk_base/muk_security/models/locking.py

218 lines
8.5 KiB
Raw Normal View History

..
7 years ago
  1. ###################################################################################
  2. #
  3. # Copyright (C) 2017 MuK IT GmbH
  4. #
  5. # This program is free software: you can redistribute it and/or modify
  6. # it under the terms of the GNU Affero General Public License as
  7. # published by the Free Software Foundation, either version 3 of the
  8. # License, or (at your option) any later version.
  9. #
  10. # This program is distributed in the hope that it will be useful,
  11. # but WITHOUT ANY WARRANTY; without even the implied warranty of
  12. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  13. # GNU Affero General Public License for more details.
  14. #
  15. # You should have received a copy of the GNU Affero General Public License
  16. # along with this program. If not, see <http://www.gnu.org/licenses/>.
  17. #
  18. ###################################################################################
  20. import os
  21. import hashlib
  22. import logging
  24. from odoo import _
  25. from odoo import models, api, fields
  26. from odoo.exceptions import AccessError
  28. _logger = logging.getLogger(__name__)
  30. class BaseModelLocking(models.AbstractModel):
  32. _name = 'muk_security.locking'
  33. _description = 'MuK Locking Model'
  34. _inherit = 'muk_utils.model'
  36. #----------------------------------------------------------
  37. # Database
  38. #----------------------------------------------------------
  40. locked = fields.Many2one(
  41. comodel_name='muk_security.lock',
  42. compute='_compute_lock',
  43. string="Locked",)
  45. editor = fields.Boolean(
  46. compute='_compute_editor',
  47. string="Editor")
  49. #----------------------------------------------------------
  50. # Locking
  51. #----------------------------------------------------------
  53. @api.multi
  54. def lock(self, user=None, operation=None, *largs, **kwargs):
  55. result = []
  56. for record in self:
  57. lock = record.is_locked()
  58. if lock and lock.operation and lock.operation == operation:
  59. result.append({
  60. 'record': record,
  61. 'lock': lock,
  62. 'token': lock.token})
  63. elif lock and ((lock.operation and lock.operation != operation) or not lock.operation):
  64. raise AccessError(_("The record (%s[%s]) is locked, so it can't be locked again.") %
  65. (record._name, record.id))
  66. else:
  67. token = hashlib.sha1(os.urandom(128)).hexdigest()
  68. lock = self.env['muk_security.lock'].sudo().create({
  69. 'locked_by': user and user.name or "System",
  70. 'locked_by_ref': user and user._name + ',' + str(user.id) or None,
  71. 'lock_ref': record._name + ',' + str(record.id),
  72. 'token': token,
  73. 'operation': operation})
  74. result.append({
  75. 'record': record,
  76. 'lock': lock,
  77. 'token': token})
  78. return result
  80. @api.multi
  81. def unlock(self, *largs, **kwargs):
  82. for record in self:
  83. locks = self.env['muk_security.lock'].sudo().search(
  84. [('lock_ref', '=', "%s,%s" % (record._name, str(record.id)))])
  85. locks.sudo().unlink()
  86. return True
  88. @api.model
  89. def unlock_operation(self, operation, *largs, **kwargs):
  90. locks = self.env['muk_security.lock'].sudo().search([('operation', '=', operation)])
  91. locks.sudo().unlink()
  92. return True
  94. @api.multi
  95. def is_locked(self, *largs, **kwargs):
  96. self.ensure_one()
  97. lock = self.env['muk_security.lock'].sudo().search(
  98. [('lock_ref', '=', self._name + ',' + str(self.id))], limit=1)
  99. if lock.id:
  100. return lock
  101. return False
  103. @api.multi
  104. def is_locked_by(self, *largs, **kwargs):
  105. self.ensure_one()
  106. lock = self.env['muk_security.lock'].sudo().search(
  107. [('lock_ref', '=', self._name + ',' + str(self.id))], limit=1)
  108. if lock.id:
  109. return lock.locked_by_ref
  110. return False
  112. @api.multi
  113. def _checking_lock_user(self, *largs, **kwargs):
  114. for record in self:
  115. lock = record.is_locked()
  116. if lock and lock.locked_by_ref and not lock.locked_by_ref != self.env.user:
  117. raise AccessError(_("The record (%s[%s]) is locked by a user, so it can't be changes or deleted.") %
  118. (self._name, self.id))
  120. @api.multi
  121. def _checking_lock(self, operation=None, *largs, **kwargs):
  122. self._checking_lock_user()
  123. for record in self:
  124. lock = record.is_locked()
  125. if lock and lock.operation and lock.operation != operation:
  126. raise AccessError(_("The record (%s[%s]) is locked, so it can't be changes or deleted.") %
  127. (self._name, self.id))
  129. @api.multi
  130. def user_lock(self, *largs, **kwargs):
  131. self.ensure_one()
  132. lock = self.is_locked()
  133. if lock:
  134. if lock.locked_by_ref:
  135. raise AccessError(_("The record is already locked by another user. (%s)") % lock.locked_by_ref.name)
  136. else:
  137. raise AccessError(_("The record is already locked."))
  138. return self.lock(user=self.env.user)
  140. @api.multi
  141. def user_unlock(self, *largs, **kwargs):
  142. self.ensure_one()
  143. lock = self.is_locked()
  144. if lock:
  145. if lock.locked_by_ref and lock.locked_by_ref.id == self.env.user.id:
  146. self.unlock()
  147. else:
  148. if lock.locked_by_ref:
  149. raise AccessError(_("The record is already locked by another user. (%s)") % lock.locked_by_ref.name)
  150. else:
  151. raise AccessError(_("The record is already locked."))
  153. #----------------------------------------------------------
  154. # Read, View
  155. #----------------------------------------------------------
  157. def _compute_lock(self):
  158. for record in self:
  159. record.locked = record.is_locked()
  161. @api.depends('locked')
  162. def _compute_editor(self):
  163. for record in self:
  164. record.editor = record.is_locked_by() == record.env.user
  166. #----------------------------------------------------------
  167. # Create, Update, Delete
  168. #----------------------------------------------------------
  170. @api.multi
  171. def write(self, vals):
  172. operation = hashlib.sha1(os.urandom(128)).hexdigest()
  173. vals = self._before_write_operation(vals, operation)
  174. result = super(BaseModelLocking, self).write(vals)
  175. for record in self:
  176. record._after_write_record_operation(vals, operation)
  177. result = self._after_write_operation(result, vals, operation)
  178. return result
  180. def _before_write_operation(self, vals, operation, *largs, **kwargs):
  181. if 'operation' in self.env.context:
  182. self._checking_lock(self.env.context['operation'])
  183. elif operation:
  184. self._checking_lock(operation)
  185. else:
  186. self._checking_lock_user()
  187. return vals
  189. def _after_write_record_operation(self, vals, operation, *largs, **kwargs):
  190. return vals
  192. def _after_write_operation(self, result, vals, operation, *largs, **kwargs):
  193. return result
  195. @api.multi
  196. def unlink(self):
  197. operation = hashlib.sha1(os.urandom(128)).hexdigest()
  198. operation_info = self._before_unlink_operation(operation)
  199. operation_infos = []
  200. for record in self:
  201. operation_infos.append(record._before_unlink_record_operation(operation))
  202. result = super(BaseModelLocking, self).unlink()
  203. self._after_unlink_operation(result, operation_info, operation_infos, operation)
  204. return result
  206. def _before_unlink_operation(self, operation, *largs, **kwargs):
  207. if 'operation' in self.env.context:
  208. self._checking_lock(self.env.context['operation'])
  209. elif operation:
  210. self._checking_lock(operation)
  211. else:
  212. self._checking_lock_user()
  213. return {}
  215. def _before_unlink_record_operation(self, operation, *largs, **kwargs):
  216. return {}
  218. def _after_unlink_operation(self, result, operation_info, operation_infos, operation, *largs, **kwargs):
  219. pass