[gen] Bugfix in the 'change user id' function. Now, the method browses every object in the database and updates local roles where the old ID was potentially mentioned.
This commit is contained in:
Gaetan Delannay
parent
7e31304c30
commit
a0837a758f
|
|
@ -939,6 +939,19 @@ class BaseMixin:
|
||||||
self.reindex()
|
self.reindex()
|
||||||
return updated
|
return updated
|
||||||
|
|
||||||
|
def applyUserIdChange(self, oldId, newId):
|
||||||
|
'''A user whose ID was p_oldId has now p_newId. If the old ID was
|
||||||
|
mentioned in self's local roles, update it to the new ID. This
|
||||||
|
method returns 1 if a change occurred, 0 else.'''
|
||||||
|
if oldId in self.__ac_local_roles__:
|
||||||
|
localRoles = self.__ac_local_roles__.copy()
|
||||||
|
localRoles[newId] = localRoles[oldId]
|
||||||
|
del localRoles[oldId]
|
||||||
|
self.__ac_local_roles__ = localRoles
|
||||||
|
self.reindex()
|
||||||
|
return 1
|
||||||
|
return 0
|
||||||
|
|
||||||
def hasHistory(self):
|
def hasHistory(self):
|
||||||
'''Has this object an history?'''
|
'''Has this object an history?'''
|
||||||
if hasattr(self.aq_base, 'workflow_history') and self.workflow_history:
|
if hasattr(self.aq_base, 'workflow_history') and self.workflow_history:
|
||||||
|
|
|
||||||
|
|
@ -78,6 +78,33 @@ class UserWrapper(AbstractWrapper):
|
||||||
(msgPart, self.user.getId(), login))
|
(msgPart, self.user.getId(), login))
|
||||||
return newPassword
|
return newPassword
|
||||||
|
|
||||||
|
def setLogin(self, oldLogin, newLogin):
|
||||||
|
'''Changes the login of this user from p_oldLogin to p_newLogin.'''
|
||||||
|
self.login = newLogin
|
||||||
|
# Update the corresponding Zope-level user
|
||||||
|
aclUsers = self.o.acl_users
|
||||||
|
zopeUser = aclUsers.getUserById(oldLogin)
|
||||||
|
zopeUser.name = newLogin
|
||||||
|
del aclUsers.data[oldLogin]
|
||||||
|
aclUsers.data[newLogin] = zopeUser
|
||||||
|
# Update the email if the email corresponds to the login.
|
||||||
|
email = self.email
|
||||||
|
if email == oldLogin:
|
||||||
|
self.email = newLogin
|
||||||
|
# Update the title, which is the login
|
||||||
|
self.title = newLogin
|
||||||
|
# Browse all objects of the database and update potential local roles
|
||||||
|
# that referred to the old login.
|
||||||
|
context = {'nb': 0, 'old': oldLogin, 'new': newLogin}
|
||||||
|
for className in self.o.getProductConfig().allClassNames:
|
||||||
|
self.compute(className, context=context, noSecurity=True,
|
||||||
|
expression="ctx['nb'] += obj.o.applyUserIdChange(" \
|
||||||
|
"ctx['old'], ctx['new'])")
|
||||||
|
self.log("Login '%s' renamed to '%s' by '%s'." % \
|
||||||
|
(oldLogin, newLogin, self.user.getId()))
|
||||||
|
self.log('Login change: local roles updated in %d object(s).' % \
|
||||||
|
context['nb'])
|
||||||
|
|
||||||
def getGrantableRoles(self):
|
def getGrantableRoles(self):
|
||||||
'''Returns the list of roles that the admin can grant to a user.'''
|
'''Returns the list of roles that the admin can grant to a user.'''
|
||||||
res = []
|
res = []
|
||||||
|
|
@ -116,14 +143,7 @@ class UserWrapper(AbstractWrapper):
|
||||||
# Update the login itself if the user has changed it.
|
# Update the login itself if the user has changed it.
|
||||||
oldLogin = self.o._oldLogin
|
oldLogin = self.o._oldLogin
|
||||||
if oldLogin and (oldLogin != login):
|
if oldLogin and (oldLogin != login):
|
||||||
zopeUser = aclUsers.getUserById(oldLogin)
|
self.setLogin(oldLogin, login)
|
||||||
zopeUser.name = login
|
|
||||||
del aclUsers.data[oldLogin]
|
|
||||||
aclUsers.data[login] = zopeUser
|
|
||||||
# Update the email if the email corresponds to the login.
|
|
||||||
email = self.email
|
|
||||||
if email == oldLogin:
|
|
||||||
self.email = login
|
|
||||||
del self.o._oldLogin
|
del self.o._oldLogin
|
||||||
# Update roles at the Zope level.
|
# Update roles at the Zope level.
|
||||||
zopeUser = aclUsers.getUserById(login)
|
zopeUser = aclUsers.getUserById(login)
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue