staff users can access all projects

2014-08-07 19:54:56 -07:00 · 2014-08-07 19:54:56 -07:00 · d0f1908a6a
commit d0f1908a6a
parent f0087a8c06
1 changed files with 15 additions and 12 deletions
--- a/issue/middleware.py
+++ b/issue/middleware.py
@ -29,18 +29,21 @@ class ProjectMiddleware:
        if request.user.is_authenticated():
            user = User.objects.get(username=request.user)
-        query = Q(public=True)
+        if user and user.is_staff:
-        if user:
+            projects = Project.objects.all()
-            # access granted through a team
+        else:
-            query |= Q(permissions__grantee_type=PermissionModel.GRANTEE_TEAM,
+            query = Q(public=True)
-                    permissions__grantee_name__in=user.teams.values_list('name'))
+            if user:
-            # access granted through a group
+                # access granted through a team
-            query |= Q(permissions__grantee_type=PermissionModel.GRANTEE_GROUP,
+                query |= Q(permissions__grantee_type=PermissionModel.GRANTEE_TEAM,
-                    permissions__grantee_name__in=user.groups.values_list('name'))
+                        permissions__grantee_name__in=user.teams.values_list('name'))
-            # access granted by specific permission
+                # access granted through a group
-            query |= Q(permissions__grantee_type=PermissionModel.GRANTEE_USER,
+                query |= Q(permissions__grantee_type=PermissionModel.GRANTEE_GROUP,
-                    permissions__grantee_name=user.username)
+                        permissions__grantee_name__in=user.groups.values_list('name'))
-        projects = Project.objects.filter(query)
+                # access granted by specific permission
                query |= Q(permissions__grantee_type=PermissionModel.GRANTEE_USER,
                        permissions__grantee_name=user.username)
            projects = Project.objects.filter(query)
        request.projects = projects
        project = view_kwargs.get('project')