Hide keyboard shortcuts

Hot-keys on this page

r m x p   toggle line displays

j k   next/prev highlighted chunk

0   (zero) top of page

1   (one) first highlighted chunk

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

# -*- coding: utf-8 -*- 

# Copyright (C) 1998-2019 by the Free Software Foundation, Inc. 

# 

# This file is part of Postorius. 

# 

# Postorius is free software: you can redistribute it and/or modify it under 

# the terms of the GNU General Public License as published by the Free 

# Software Foundation, either version 3 of the License, or (at your option) 

# any later version. 

# 

# Postorius is distributed in the hope that it will be useful, but WITHOUT 

# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 

# FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for 

# more details. 

# 

# You should have received a copy of the GNU General Public License along with 

# Postorius. If not, see <http://www.gnu.org/licenses/>. 

 

""" 

Authentication and authorization-related utilities. 

""" 

 

from django.utils import six 

 

from allauth.account.models import EmailAddress 

 

from postorius.models import Domain, List 

 

 

def user_is_in_list_roster(user, mailing_list, roster): 

"""Checks if a user is in a MailingList roster. 

 

:param user: User to check access permissions for. 

:type user: django.contrib.auth.model.User 

:param mailing_list: MailingList to check permissions for. 

:type mailing_list: postorius.models.List 

:param roster: Access permissions required. 

:type roster: str 

""" 

if not user.is_authenticated: 

return False 

addresses = set(EmailAddress.objects.filter( 

user=user, verified=True).values_list("email", flat=True)) 

roster_addresses = set( 

[member.email for member in getattr(mailing_list, roster)] 

) 

if addresses & roster_addresses: 

return True # At least one address is in the roster 

return False 

 

 

def set_list_access_props(user, mlist): 

"""Update user's access permissions of a MailingList. 

 

:param user: The user to check permissions for. 

:type user: django.contrib.auth.model.User 

:param mlist: MailingList to check permissions for. 

:type mlist: postorius.models.List 

""" 

if isinstance(mlist, six.string_types): 

mlist = List.objects.get_or_404(mlist) 

if not hasattr(user, 'is_list_owner'): 

user.is_list_owner = user_is_in_list_roster( 

user, mlist, "owners") 

if not hasattr(user, 'is_list_moderator'): 

user.is_list_moderator = user_is_in_list_roster( 

user, mlist, "moderators") 

 

 

def set_domain_access_props(user, domain): 

"""Update user's access permissions for a domain. 

 

:param user: The user to check permissions for. 

:type user: django.contrib.auth.model.User 

:param domain: Domain to check permissions for. 

:type domain: postorius.models.Domain 

""" 

# TODO: This is very slow as it involves first iterating over every domain 

# owner and then each of their addresses. Create an API in Core to 

# facilitate this. 

if isinstance(domain, six.string_types): 

domain = Domain.objects.get_or_404(domain) 

owner_addresses = [] 

for owner in domain.owners: 

owner_addresses.extend(owner.addresses) 

owner_addresses = set([each.email for each in owner_addresses]) 

user_addresses = set(EmailAddress.objects.filter( 

user=user, verified=True).values_list("email", flat=True)) 

user.is_domain_owner = owner_addresses & user_addresses