[gen] Allow to edit external users, excepted data like login, name... that come from the external source.

gen/installer.py

@@ -16,6 +16,12 @@ from appy.shared.data import languages
 homePage = '<tal:h define="dummy python: request.RESPONSE.redirect(' \
            'context.config.getHomePage())"/>'
 
+# Cheat for disabling Zope's XMLRPC --------------------------------------------
+class FakeXmlrpc:
+    '''Fake class that behaves like Zope's xmlrpc module.'''
+    def parse_input(self, value): return None, ()
+    def response(self, response): return response
+
 def onDelSession(sessionObject, container):
     '''This function is called when a session expires.'''
     rq = container.REQUEST

gen/wrappers/UserWrapper.py

@@ -10,19 +10,25 @@ class UserWrapper(AbstractWrapper):
     def showLogin(self):
         '''When must we show the login field?'''
         if self.o.isTemporary(): return 'edit'
-        # The manager has the possibility to change the login itself.
+        # The manager has the possibility to change the login itself (local
-        if self.user.has_role('Manager'): return True
+        # users only).
+        if self.user.has_role('Manager') and (self.source == 'zodb'):
+            return True
         return ('view', 'result')
 
-    def showName(tool):
+    def showName(self):
-        '''Name and first name, by default, are always shown.'''
+        '''Name and first name, by default, can not be edited for non-local
+           users.'''
+        if (self.source != 'zodb'): return ('view', 'result')
         return True
 
     def showEmail(self):
         '''In most cases, email is the login. Show the field only if it is not
            the case.'''
         email = self.email
-        return email and (email != self.login)
+        if email and (email != self.login):
+            if (self.source != 'zodb'): return ('view', 'result')
+            return True
 
     def showRoles(tool):
         '''Only the admin can view or edit roles.'''
@@ -53,11 +59,12 @@ class UserWrapper(AbstractWrapper):
 
     def showPassword(self):
         '''When must we show the 2 fields for entering a password ?'''
-        # When someone creates the user
+        # When someone creates the user.
         if self.o.isTemporary(): return 'edit'
         # When the user itself (we don't check role Owner because a Manager can
         # also own a User instance) wants to edit information about himself.
-        if self.user.login == self.login: return 'edit'
+        if (self.user.login == self.login) and (self.source == 'zodb'):
+            return 'edit'
 
     def encryptPassword(self, clearPassword):
         '''Returns p_clearPassword, encrypted.'''
@@ -211,20 +218,16 @@ class UserWrapper(AbstractWrapper):
         return self._callCustom('onEdit', created)
 
     def mayEdit(self):
-        '''No one can edit users "system" and "anon"; no one can edit non-zodb
+        '''No one can edit users "system" and "anon".'''
-           users.'''
         if self.o.id in ('system', 'anon'): return
-        if self.source != 'zodb': return
         # Call custom "mayEdit" when present.
         custom = self._getCustomMethod('mayEdit')
         if custom: return self._callCustom('mayEdit')
         return True
 
     def mayDelete(self):
-        '''No one can delete users "system", "anon" and "admin"; no one can
+        '''No one can delete users "system", "anon" and "admin".'''
-           delete non-zodb users.'''
         if self.o.id in ('system', 'anon', 'admin'): return
-        if self.source != 'zodb': return
         # Call custom "mayDelete" when present.
         custom = self._getCustomMethod('mayDelete')
         if custom: return self._callCustom('mayDelete')