~azzar1/unity/add-show-desktop-key

« back to all changes in this revision

Viewing changes to ivle/makeuser.py

Committer: William Grant
Date: 2009-05-04 03:23:09 UTC
mto: (1165.5.4 submissions-subversion-acls)
mto: This revision was merged to the branch mainline in revision 1247.
Revision ID: grantw@unimelb.edu.au-20090504032309-ag0jdrwk9xfuaolx

Sentence-case the 'No Projects'.

files removed:
bin/ivle-fetchsubmissions

bin/ivle-refreshfilesystem

files modified:
bin/ivle-marks

ivle/database.py

ivle/makeuser.py

ivle/util.py

ivle/webapp/admin/offeringservice.py

ivle/webapp/admin/subject-media/project.css

ivle/webapp/admin/subject-media/project.js

ivle/webapp/admin/subject.py

ivle/webapp/admin/templates/offering_projects.html

ivle/webapp/admin/templates/project.html

ivle/webapp/admin/templates/project_fragment.html

ivle/webapp/admin/templates/projectset_fragment.html

ivle/webapp/admin/templates/subjects.html

ivle/webapp/admin/user.py

ivle/webapp/console/service.py

ivle/webapp/filesystem/serve/__init__.py

ivle/webapp/submit/__init__.py

services/serveservice

services/svnlogservice

setup/util.py

Show diffs side-by-side

added added

removed removed

ivle/makeuser.py

import logging

import subprocess

from storm.expr import Select, Max

import ivle.config

from ivle.database import (User, ProjectGroup, Assessed, ProjectSubmission,

Project, ProjectSet, Offering, Enrolment, Subject, Semester)

from ivle.database import ProjectGroup, User

def chown_to_webserver(filename):

"""chown a directory and its contents to the web server.

%(login)s = rw

""" % {'login': u.login})

# Now we need to grant offering tutors and lecturers access to the latest

# submissions in their offerings. There are much prettier ways to do this,

# but a lot of browser requests call this function, so it needs to be

# fast. We can grab all of the paths needing authorisation directives with

# a single query, and we cache the list of viewers for each offering.

offering_viewers_cache = {}

for (login, psid, pspath, offeringid) in store.find(

(User.login, ProjectSubmission.id, ProjectSubmission.path,

Offering.id),

Assessed.id == ProjectSubmission.assessed_id,

User.id == Assessed.user_id,

Project.id == Assessed.project_id,

ProjectSet.id == Project.project_set_id,

Offering.id == ProjectSet.id,

ProjectSubmission.date_submitted == Select(

Max(ProjectSubmission.date_submitted),

ProjectSubmission.assessed_id == Assessed.id,

tables=ProjectSubmission

)

# Do we already have the list of logins authorised for this offering

# cached? If not, get it.

100

if offeringid not in offering_viewers_cache:

101

offering_viewers_cache[offeringid] = list(store.find(

102

User.login,

103

User.id == Enrolment.user_id,

104

Enrolment.offering_id == offeringid,

105

Enrolment.role.is_in((u'tutor', u'lecturer'))

106

)

107

)

108

109

f.write("""

110

# Submission %(id)d

111

[%(login)s:%(path)s]

112

""" % {'login': login, 'id': psid, 'path': pspath})

113

114

for viewer_login in offering_viewers_cache[offeringid]:

115

# We don't want to override the owner's write privilege,

116

# so we don't add them to the read-only ACL.

117

if login != viewer_login:

118

f.write("%s = r\n" % viewer_login)

119

120

f.close()

121

os.rename(temp_name, conf_name)

122

chown_to_webserver(conf_name)

136

137

""" % {'time': time.asctime()})

138

139

group_members_cache = {}

140

for group in store.find(ProjectGroup):

141

offering = group.project_set.offering

142

reponame = "_".join([offering.subject.short_name,

145

group.name])

146

147

100

f.write("[%s:/]\n" % reponame)

148

if group.id not in group_members_cache:

149

group_members_cache[group.id] = set()

150

101

for user in group.members:

151

group_members_cache[group.id].add(user.login)

152

102

f.write("%s = rw\n" % user.login)

153

103

f.write("\n")

154

104

155

# Now we need to grant offering tutors and lecturers access to the latest

156

# submissions in their offerings. There are much prettier ways to do this,

157

# but a lot of browser requests call this function, so it needs to be

158

# fast. We can grab all of the paths needing authorisation directives with

159

# a single query, and we cache the list of viewers for each offering.

160

offering_viewers_cache = {}

161

for (ssn, year, sem, name, psid, pspath, gid, offeringid) in store.find(

162

(Subject.short_name, Semester.year, Semester.semester,

163

ProjectGroup.name, ProjectSubmission.id, ProjectSubmission.path,

164

ProjectGroup.id, Offering.id),

165

Assessed.id == ProjectSubmission.assessed_id,

166

ProjectGroup.id == Assessed.project_group_id,

167

Project.id == Assessed.project_id,

168

ProjectSet.id == Project.project_set_id,

169

Offering.id == ProjectSet.offering_id,

170

Subject.id == Offering.subject_id,

171

Semester.id == Offering.semester_id,

172

ProjectSubmission.date_submitted == Select(

173

Max(ProjectSubmission.date_submitted),

174

ProjectSubmission.assessed_id == Assessed.id,

175

tables=ProjectSubmission

176

)

177

178

179

reponame = "_".join([ssn, year, sem, name])

180

181

# Do we already have the list of logins authorised for this offering

182

# cached? If not, get it.

183

if offeringid not in offering_viewers_cache:

184

offering_viewers_cache[offeringid] = list(store.find(

185

User.login,

186

User.id == Enrolment.user_id,

187

Enrolment.offering_id == offeringid,

188

Enrolment.role.is_in((u'tutor', u'lecturer'))

189

)

190

)

191

192

f.write("""

193

# Submission %(id)d

194

[%(repo)s:%(path)s]

195

""" % {'repo': reponame, 'id': psid, 'path': pspath})

196

197

for viewer_login in offering_viewers_cache[offeringid]:

198

# Skip existing group members, or they can't write to it any more.

199

if viewer_login not in group_members_cache[gid]:

200

f.write("%s = r\n" % viewer_login)

201

202

105

f.close()

203

106

os.rename(temp_name, conf_name)

204

107

chown_to_webserver(conf_name)

Older »