2016-08-04 05:21:04 +02:00
|
|
|
from django.shortcuts import render, get_object_or_404, redirect
|
2016-08-02 10:40:46 +02:00
|
|
|
from django.core.exceptions import PermissionDenied
|
2016-08-04 05:21:04 +02:00
|
|
|
from django.views.generic import ListView, DetailView
|
|
|
|
|
from django.views.generic.edit import CreateView, UpdateView, DeleteView
|
|
|
|
|
from django.core.urlresolvers import reverse_lazy
|
|
|
|
|
from django.contrib import messages
|
|
|
|
|
from django.contrib.messages.views import SuccessMessageMixin
|
2016-08-02 10:40:46 +02:00
|
|
|
from django.contrib.auth.decorators import login_required, permission_required
|
|
|
|
|
from django.contrib.auth.models import User
|
|
|
|
|
from django.http import HttpResponse, Http404
|
|
|
|
|
import json
|
|
|
|
|
from gestioncof.models import CofProfile, Clipper
|
2016-08-04 08:23:34 +02:00
|
|
|
from kfet.models import Account, Checkout, Article
|
2016-08-03 04:38:54 +02:00
|
|
|
from kfet.forms import *
|
2016-08-02 10:40:46 +02:00
|
|
|
|
|
|
|
|
@login_required
|
|
|
|
|
def home(request):
|
|
|
|
|
return render(request, "kfet/base.html")
|
|
|
|
|
|
|
|
|
|
def put_cleaned_data_in_dict(dict, form):
|
|
|
|
|
for field in form.cleaned_data:
|
|
|
|
|
dict[field] = form.cleaned_data[field]
|
|
|
|
|
|
2016-08-04 05:21:04 +02:00
|
|
|
# -----
|
|
|
|
|
# Account views
|
|
|
|
|
# -----
|
|
|
|
|
|
|
|
|
|
# Account - General
|
|
|
|
|
|
2016-08-02 10:40:46 +02:00
|
|
|
@login_required
|
2016-08-03 04:38:54 +02:00
|
|
|
@permission_required('account.is_team')
|
|
|
|
|
def account(request):
|
2016-08-04 05:21:04 +02:00
|
|
|
accounts = Account.objects.order_by('trigramme')
|
2016-08-03 04:38:54 +02:00
|
|
|
return render(request, "kfet/account.html", { 'accounts' : accounts })
|
|
|
|
|
|
2016-08-04 05:21:04 +02:00
|
|
|
@login_required
|
|
|
|
|
@permission_required('kfet.is_team')
|
|
|
|
|
def account_is_validandfree_ajax(request):
|
|
|
|
|
if not request.GET.get("trigramme"):
|
|
|
|
|
raise Http404
|
|
|
|
|
trigramme = request.GET.get("trigramme")
|
|
|
|
|
data = Account.is_validandfree(trigramme)
|
|
|
|
|
return HttpResponse(json.dumps(data), content_type = 'application/json')
|
|
|
|
|
|
|
|
|
|
# Account - Create
|
|
|
|
|
|
2016-08-03 04:38:54 +02:00
|
|
|
@login_required
|
|
|
|
|
@permission_required('account.is_team')
|
|
|
|
|
def account_create(request):
|
|
|
|
|
|
2016-08-02 10:40:46 +02:00
|
|
|
# A envoyer au template
|
|
|
|
|
data_template = {
|
2016-08-03 04:38:54 +02:00
|
|
|
'account_trigramme_form': AccountTriForm(),
|
2016-08-04 05:21:04 +02:00
|
|
|
'errors' : {},
|
2016-08-02 10:40:46 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# Enregistrement
|
|
|
|
|
if request.method == "POST":
|
|
|
|
|
# Pour indiquer la tentative d'enregistrement au template
|
|
|
|
|
|
2016-08-03 04:38:54 +02:00
|
|
|
# Checking permission
|
|
|
|
|
if not request.user.has_perm('kfet.add_account'):
|
|
|
|
|
raise PermissionDenied
|
|
|
|
|
|
2016-08-02 10:40:46 +02:00
|
|
|
# Peuplement des forms
|
|
|
|
|
username = request.POST.get('username')
|
|
|
|
|
try:
|
2016-08-03 04:38:54 +02:00
|
|
|
user = User.objects.get(username=username)
|
2016-08-02 10:40:46 +02:00
|
|
|
(cof, _) = CofProfile.objects.get_or_create(user=user)
|
2016-08-03 04:38:54 +02:00
|
|
|
user_form = UserForm(request.POST, instance=user)
|
|
|
|
|
cof_form = CofForm(request.POST, instance=cof)
|
2016-08-02 10:40:46 +02:00
|
|
|
except User.DoesNotExist:
|
|
|
|
|
user_form = UserForm(request.POST)
|
|
|
|
|
cof_form = CofForm(request.POST)
|
2016-08-03 04:38:54 +02:00
|
|
|
trigramme_form = AccountTriForm(request.POST)
|
|
|
|
|
account_form = AccountNoTriForm(request.POST)
|
|
|
|
|
|
2016-08-02 10:40:46 +02:00
|
|
|
# Ajout des erreurs pour le template
|
|
|
|
|
data_template['errors']['user_form'] = user_form.errors
|
|
|
|
|
data_template['errors']['cof_form'] = cof_form.errors
|
|
|
|
|
data_template['errors']['trigramme_form'] = trigramme_form.errors
|
|
|
|
|
data_template['errors']['account_form'] = account_form.errors
|
|
|
|
|
|
|
|
|
|
if all((user_form.is_valid(), cof_form.is_valid(),
|
|
|
|
|
trigramme_form.is_valid(), account_form.is_valid())):
|
|
|
|
|
data = {}
|
2016-08-03 04:38:54 +02:00
|
|
|
# Fill data for Account.save()
|
2016-08-02 10:40:46 +02:00
|
|
|
put_cleaned_data_in_dict(data, user_form)
|
|
|
|
|
put_cleaned_data_in_dict(data, cof_form)
|
|
|
|
|
|
|
|
|
|
try:
|
2016-08-03 04:38:54 +02:00
|
|
|
account = trigramme_form.save(data = data)
|
|
|
|
|
account_form = AccountNoTriForm(request.POST, instance=account)
|
|
|
|
|
account_form.save()
|
2016-08-04 05:21:04 +02:00
|
|
|
messages.success(request, 'Compte créé : %s' % account.trigramme)
|
2016-08-02 10:40:46 +02:00
|
|
|
except Account.UserHasAccount as e:
|
2016-08-04 05:21:04 +02:00
|
|
|
messages.error(request, \
|
|
|
|
|
"Cet utilisateur a déjà un compte K-Fêt : %s" % e.trigramme)
|
2016-08-02 10:40:46 +02:00
|
|
|
|
2016-08-03 04:38:54 +02:00
|
|
|
return render(request, "kfet/account_create.html", data_template)
|
2016-08-02 10:40:46 +02:00
|
|
|
|
2016-08-03 04:38:54 +02:00
|
|
|
def account_form_set_readonly_fields(user_form, cof_form):
|
2016-08-02 10:40:46 +02:00
|
|
|
user_form.fields['username'].widget.attrs['readonly'] = True
|
|
|
|
|
cof_form.fields['login_clipper'].widget.attrs['readonly'] = True
|
|
|
|
|
cof_form.fields['is_cof'].widget.attrs['disabled'] = True
|
|
|
|
|
|
2016-08-03 04:38:54 +02:00
|
|
|
@login_required
|
|
|
|
|
@permission_required('kfet.is_team')
|
|
|
|
|
def account_create_ajax(request, username=None, login_clipper=None):
|
2016-08-02 10:40:46 +02:00
|
|
|
user = None
|
|
|
|
|
if login_clipper:
|
|
|
|
|
# à partir d'un clipper
|
|
|
|
|
# le user associé à ce clipper ne devrait pas encore existé
|
|
|
|
|
clipper = get_object_or_404(Clipper, username = login_clipper)
|
|
|
|
|
try:
|
|
|
|
|
# Vérification que clipper ne soit pas déjà dans User
|
2016-08-03 04:38:54 +02:00
|
|
|
user = User.objects.get(username=login_clipper)
|
2016-08-02 10:40:46 +02:00
|
|
|
# Ici, on nous a menti, le user existe déjà
|
|
|
|
|
username = user.username
|
|
|
|
|
login_clipper = None
|
|
|
|
|
except User.DoesNotExist:
|
|
|
|
|
# Clipper (sans user déjà existant)
|
|
|
|
|
|
|
|
|
|
# UserForm - Prefill + Création
|
|
|
|
|
user_initial_data = {
|
|
|
|
|
'username' : login_clipper,
|
|
|
|
|
'email' : login_clipper + "@clipper.ens.fr"}
|
|
|
|
|
if clipper.fullname:
|
|
|
|
|
# Prefill du nom et prénom
|
|
|
|
|
names = clipper.fullname.split()
|
|
|
|
|
# Le premier, c'est le prénom
|
|
|
|
|
user_initial_data['first_name'] = names[0]
|
|
|
|
|
if len(names) > 1:
|
|
|
|
|
# Si d'autres noms -> tous dans le nom de famille
|
|
|
|
|
user_initial_data['last_name'] = " ".join(names[1:])
|
|
|
|
|
user_form = UserForm(initial = user_initial_data)
|
|
|
|
|
|
|
|
|
|
# CofForm - Prefill + Création
|
|
|
|
|
cof_initial_data = { 'login_clipper': login_clipper }
|
|
|
|
|
cof_form = CofForm(initial = cof_initial_data)
|
|
|
|
|
|
|
|
|
|
# AccountForm
|
|
|
|
|
account_form = AccountForm()
|
|
|
|
|
|
|
|
|
|
# Protection (read-only) des champs username et login_clipper
|
2016-08-03 04:38:54 +02:00
|
|
|
account_form_set_readonly_fields(user_form, cof_form)
|
2016-08-02 10:40:46 +02:00
|
|
|
if username:
|
|
|
|
|
# le user existe déjà
|
|
|
|
|
user = get_object_or_404(User, username=username)
|
|
|
|
|
# récupération du profil cof
|
|
|
|
|
(cof, _) = CofProfile.objects.get_or_create(user=user)
|
|
|
|
|
# UserForm + CofForm - Création à partir des instances existantes
|
|
|
|
|
user_form = UserForm(instance = user)
|
|
|
|
|
cof_form = CofForm(instance = cof)
|
|
|
|
|
# AccountForm
|
2016-08-03 04:38:54 +02:00
|
|
|
account_form = AccountNoTriForm()
|
2016-08-02 10:40:46 +02:00
|
|
|
# Protection (read-only) des champs username et login_clipper
|
2016-08-03 04:38:54 +02:00
|
|
|
account_form_set_readonly_fields(user_form, cof_form)
|
2016-08-02 10:40:46 +02:00
|
|
|
elif not login_clipper:
|
|
|
|
|
# connaît pas du tout, faut tout remplir
|
|
|
|
|
user_form = UserForm()
|
|
|
|
|
cof_form = CofForm()
|
2016-08-03 04:38:54 +02:00
|
|
|
account_form = AccountNoTriForm()
|
2016-08-02 10:40:46 +02:00
|
|
|
|
2016-08-03 04:38:54 +02:00
|
|
|
return render(request, "kfet/account_create_form.html", {
|
2016-08-02 10:40:46 +02:00
|
|
|
'account_form' : account_form,
|
|
|
|
|
'cof_form' : cof_form,
|
|
|
|
|
'user_form' : user_form,
|
|
|
|
|
})
|
|
|
|
|
|
2016-08-04 05:21:04 +02:00
|
|
|
# Account - Read
|
2016-08-03 04:38:54 +02:00
|
|
|
|
|
|
|
|
@login_required
|
|
|
|
|
def account_read(request, trigramme):
|
|
|
|
|
try:
|
|
|
|
|
account = Account.objects.get(trigramme=trigramme)
|
|
|
|
|
except Account.DoesNotExist:
|
|
|
|
|
raise Http404
|
|
|
|
|
|
|
|
|
|
# Checking permissions
|
|
|
|
|
if not request.user.has_perm('kfet.is_team') \
|
2016-08-04 05:21:04 +02:00
|
|
|
and request.user != account.user:
|
2016-08-03 04:38:54 +02:00
|
|
|
raise PermissionDenied
|
|
|
|
|
|
|
|
|
|
return render(request, "kfet/account_read.html", { 'account' : account })
|
|
|
|
|
|
2016-08-04 05:21:04 +02:00
|
|
|
# Account - Update
|
|
|
|
|
|
2016-08-03 04:38:54 +02:00
|
|
|
@login_required
|
|
|
|
|
def account_update(request, trigramme):
|
|
|
|
|
try:
|
|
|
|
|
account = Account.objects.get(trigramme=trigramme)
|
|
|
|
|
except Account.DoesNotExist:
|
|
|
|
|
raise Http404
|
|
|
|
|
|
|
|
|
|
# Checking permissions
|
2016-08-04 05:21:04 +02:00
|
|
|
if not request.user.has_perm('kfet.is_team') \
|
|
|
|
|
and request.user != account.user:
|
2016-08-03 04:38:54 +02:00
|
|
|
raise PermissionDenied
|
|
|
|
|
|
|
|
|
|
if request.method == "POST":
|
|
|
|
|
# Update attempt
|
|
|
|
|
|
2016-08-04 05:21:04 +02:00
|
|
|
# Checking permissions
|
|
|
|
|
if not request.user.has_perm('kfet.change_account') \
|
|
|
|
|
and request.user != account.user:
|
|
|
|
|
raise PermissionDenied
|
|
|
|
|
|
|
|
|
|
# Peuplement des forms
|
2016-08-03 04:38:54 +02:00
|
|
|
if request.user.has_perm('kfet.change_account'):
|
|
|
|
|
account_form = AccountForm(request.POST, instance = account)
|
|
|
|
|
else:
|
2016-08-03 06:33:27 +02:00
|
|
|
account_form = AccountRestrictForm(request.POST, instance = account)
|
2016-08-03 04:38:54 +02:00
|
|
|
cof_form = CofRestrictForm(request.POST, instance=account.cofprofile)
|
2016-08-04 05:21:04 +02:00
|
|
|
user_form = UserRestrictForm(request.POST, instance=account.user)
|
2016-08-03 04:38:54 +02:00
|
|
|
|
|
|
|
|
if all((account_form.is_valid(), cof_form.is_valid(), user_form.is_valid())):
|
|
|
|
|
data = {}
|
|
|
|
|
# Fill data for Account.save()
|
|
|
|
|
put_cleaned_data_in_dict(data, user_form)
|
|
|
|
|
put_cleaned_data_in_dict(data, cof_form)
|
|
|
|
|
|
|
|
|
|
# Updating
|
|
|
|
|
account_form.save(data = data)
|
2016-08-04 05:21:04 +02:00
|
|
|
if request.user == account.user:
|
|
|
|
|
messages.success(request, \
|
|
|
|
|
'Vos informations ont été mises à jour')
|
|
|
|
|
else:
|
|
|
|
|
messages.success(request, \
|
|
|
|
|
'Informations du compte %s mises à jour' % account.trigramme)
|
|
|
|
|
return redirect('kfet.account.read', account.trigramme)
|
|
|
|
|
else:
|
|
|
|
|
messages.error(request, \
|
|
|
|
|
'Informations non mises à jour. Corrigez les erreurs')
|
2016-08-03 04:38:54 +02:00
|
|
|
else:
|
|
|
|
|
# No update attempt
|
2016-08-04 05:21:04 +02:00
|
|
|
if request.user.has_perm('kfet.is_team'):
|
2016-08-03 04:38:54 +02:00
|
|
|
account_form = AccountForm(instance = account)
|
|
|
|
|
else:
|
|
|
|
|
account_form = AccountRestrictForm(instance = account)
|
|
|
|
|
cof_form = CofRestrictForm(instance = account.cofprofile)
|
2016-08-04 05:21:04 +02:00
|
|
|
user_form = UserRestrictForm(instance = account.user)
|
2016-08-03 04:38:54 +02:00
|
|
|
|
|
|
|
|
return render(request, "kfet/account_update.html", {
|
|
|
|
|
'account' : account,
|
|
|
|
|
'account_form' : account_form,
|
|
|
|
|
'cof_form' : cof_form,
|
|
|
|
|
'user_form' : user_form,
|
|
|
|
|
})
|
2016-08-04 05:21:04 +02:00
|
|
|
|
|
|
|
|
# -----
|
|
|
|
|
# Checkout views
|
|
|
|
|
# -----
|
|
|
|
|
|
|
|
|
|
# Checkout - General
|
|
|
|
|
|
|
|
|
|
class CheckoutList(ListView):
|
|
|
|
|
model = Checkout
|
|
|
|
|
template_name = 'kfet/checkout.html'
|
|
|
|
|
context_object_name = 'checkouts'
|
|
|
|
|
|
|
|
|
|
# Checkout - Create
|
|
|
|
|
|
|
|
|
|
class CheckoutCreate(SuccessMessageMixin, CreateView):
|
|
|
|
|
model = Checkout
|
|
|
|
|
template_name = 'kfet/checkout_create.html'
|
|
|
|
|
form_class = CheckoutForm
|
|
|
|
|
success_message = 'Nouvelle caisse : %(name)s'
|
|
|
|
|
|
|
|
|
|
# Surcharge de la validation
|
|
|
|
|
def form_valid(self, form):
|
|
|
|
|
# Checking permission
|
|
|
|
|
if not self.request.user.has_perm('add_checkout'):
|
|
|
|
|
raise PermissionDenied
|
|
|
|
|
# Creating
|
|
|
|
|
form.instance.created_by = self.request.user.profile.account_kfet
|
|
|
|
|
return super(CheckoutCreate, self).form_valid(form)
|
|
|
|
|
|
|
|
|
|
# Checkout - Read
|
|
|
|
|
|
|
|
|
|
class CheckoutRead(DetailView):
|
2016-08-04 08:23:34 +02:00
|
|
|
model = Checkout
|
2016-08-04 05:21:04 +02:00
|
|
|
template_name = 'kfet/checkout_read.html'
|
|
|
|
|
context_object_name = 'checkout'
|
|
|
|
|
|
|
|
|
|
# Checkout - Update
|
|
|
|
|
|
|
|
|
|
class CheckoutUpdate(SuccessMessageMixin, UpdateView):
|
|
|
|
|
model = Checkout
|
|
|
|
|
template_name = 'kfet/checkout_update.html'
|
|
|
|
|
form_class = CheckoutRestrictForm
|
|
|
|
|
success_message = 'Informations mises à jour pour la caisse : %(name)s'
|
|
|
|
|
|
|
|
|
|
# Surcharge de la validation
|
|
|
|
|
def form_valid(self, form):
|
|
|
|
|
# Checking permission
|
|
|
|
|
if not self.request.user.has_perm('change_checkout'):
|
|
|
|
|
raise PermissionDenied
|
|
|
|
|
# Updating
|
|
|
|
|
return super(CheckoutUpdate, self).form_valid(form)
|
2016-08-04 08:23:34 +02:00
|
|
|
|
|
|
|
|
# -----
|
|
|
|
|
# Article views
|
|
|
|
|
# -----
|
|
|
|
|
|
|
|
|
|
# Article - General
|
|
|
|
|
|
|
|
|
|
class ArticleList(ListView):
|
|
|
|
|
model = Article
|
|
|
|
|
queryset = Article.objects.order_by('category', '-is_sold', 'name')
|
|
|
|
|
template_name = 'kfet/article.html'
|
|
|
|
|
context_object_name = 'articles'
|
|
|
|
|
|
|
|
|
|
# Article - Create
|
|
|
|
|
|
|
|
|
|
class ArticleCreate(SuccessMessageMixin, CreateView):
|
|
|
|
|
model = Article
|
|
|
|
|
template_name = 'kfet/article_create.html'
|
|
|
|
|
form_class = ArticleForm
|
|
|
|
|
success_message = 'Nouvel item : %(category)s - %(name)s'
|
|
|
|
|
|
|
|
|
|
# Surcharge de la validation
|
|
|
|
|
def form_valid(self, form):
|
|
|
|
|
# Checking permission
|
|
|
|
|
if not self.request.user.has_perm('add_article'):
|
|
|
|
|
raise PermissionDenied
|
|
|
|
|
# Creating
|
|
|
|
|
return super(ArticleCreate, self).form_valid(form)
|
|
|
|
|
|
|
|
|
|
# Article - Read
|
|
|
|
|
|
|
|
|
|
class ArticleRead(DetailView):
|
|
|
|
|
model = Article
|
|
|
|
|
template_name = 'kfet/article_read.html'
|
|
|
|
|
context_object_name = 'article'
|
|
|
|
|
|
|
|
|
|
# Article - Update
|
|
|
|
|
|
|
|
|
|
class ArticleUpdate(UpdateView):
|
|
|
|
|
model = Article
|
|
|
|
|
template_name = 'kfet/article_update.html'
|
|
|
|
|
form_class = ArticleRestrictForm
|
|
|
|
|
success_message = "Informations mises à jour pour l'article : %(name)s"
|
|
|
|
|
|
|
|
|
|
# Surcharge de la validation
|
|
|
|
|
def form_valid(self, form):
|
|
|
|
|
# Checking permission
|
|
|
|
|
if not self.request.user.has_perm('change_article'):
|
|
|
|
|
raise PermissionDenied
|
|
|
|
|
# Updating
|
|
|
|
|
return super(ArticleUpdate, self).form_valid(form)
|
