25 |
25 |
26 from pyams_content.interfaces import MANAGE_SITE_ROOT_PERMISSION, MANAGE_SITE_PERMISSION, MANAGE_TOOL_PERMISSION, \ |
26 from pyams_content.interfaces import MANAGE_SITE_ROOT_PERMISSION, MANAGE_SITE_PERMISSION, MANAGE_TOOL_PERMISSION, \ |
27 CREATE_CONTENT_PERMISSION, MANAGE_CONTENT_PERMISSION, COMMENT_CONTENT_PERMISSION, PUBLISH_CONTENT_PERMISSION |
27 CREATE_CONTENT_PERMISSION, MANAGE_CONTENT_PERMISSION, COMMENT_CONTENT_PERMISSION, PUBLISH_CONTENT_PERMISSION |
28 from pyams_content.interfaces import WEBMASTER_ROLE, PILOT_ROLE, MANAGER_ROLE, OWNER_ROLE, CONTRIBUTOR_ROLE, \ |
28 from pyams_content.interfaces import WEBMASTER_ROLE, PILOT_ROLE, MANAGER_ROLE, OWNER_ROLE, CONTRIBUTOR_ROLE, \ |
29 READER_ROLE, OPERATOR_ROLE, GUEST_ROLE |
29 READER_ROLE, OPERATOR_ROLE, GUEST_ROLE |
30 from pyams_security.interfaces import ADMIN_USER_ID |
30 from pyams_security.interfaces import ADMIN_USER_ID, SYSTEM_ADMIN_ROLE |
31 from pyams_thesaurus.interfaces import CREATE_THESAURUS_PERMISSION, ADMIN_THESAURUS_PERMISSION |
31 from pyams_thesaurus.interfaces import CREATE_THESAURUS_PERMISSION, ADMIN_THESAURUS_PERMISSION |
32 from pyams_utils.interfaces import PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, \ |
32 from pyams_utils.interfaces import PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, \ |
33 VIEW_SYSTEM_PERMISSION, MANAGE_ROLES_PERMISSION, MANAGE_SKIN_PERMISSION |
33 VIEW_SYSTEM_PERMISSION, MANAGE_ROLES_PERMISSION, MANAGE_SKIN_PERMISSION |
34 |
34 |
35 # register custom permissions |
35 # register custom permissions |
55 VIEW_SYSTEM_PERMISSION, MANAGE_ROLES_PERMISSION, |
55 VIEW_SYSTEM_PERMISSION, MANAGE_ROLES_PERMISSION, |
56 CREATE_THESAURUS_PERMISSION, ADMIN_THESAURUS_PERMISSION, |
56 CREATE_THESAURUS_PERMISSION, ADMIN_THESAURUS_PERMISSION, |
57 MANAGE_SITE_ROOT_PERMISSION, MANAGE_SITE_PERMISSION, MANAGE_TOOL_PERMISSION, |
57 MANAGE_SITE_ROOT_PERMISSION, MANAGE_SITE_PERMISSION, MANAGE_TOOL_PERMISSION, |
58 CREATE_CONTENT_PERMISSION, MANAGE_CONTENT_PERMISSION, MANAGE_SKIN_PERMISSION, |
58 CREATE_CONTENT_PERMISSION, MANAGE_CONTENT_PERMISSION, MANAGE_SKIN_PERMISSION, |
59 COMMENT_CONTENT_PERMISSION, PUBLISH_CONTENT_PERMISSION}, |
59 COMMENT_CONTENT_PERMISSION, PUBLISH_CONTENT_PERMISSION}, |
60 'managers': {ADMIN_USER_ID, 'role:system.Manager', 'role:pyams.Webmaster'}}) |
60 'managers': {ADMIN_USER_ID, |
|
61 'role:{0}'.format(SYSTEM_ADMIN_ROLE), |
|
62 'role:{0}'.format(WEBMASTER_ROLE)}}) |
61 config.register_role({'id': PILOT_ROLE, |
63 config.register_role({'id': PILOT_ROLE, |
62 'title': _("Pilot (role)"), |
64 'title': _("Pilot (role)"), |
63 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
65 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
64 VIEW_SYSTEM_PERMISSION, MANAGE_ROLES_PERMISSION, |
66 VIEW_SYSTEM_PERMISSION, MANAGE_ROLES_PERMISSION, |
65 MANAGE_SITE_PERMISSION, MANAGE_TOOL_PERMISSION, |
67 MANAGE_SITE_PERMISSION, MANAGE_TOOL_PERMISSION, |
66 MANAGE_CONTENT_PERMISSION, COMMENT_CONTENT_PERMISSION, |
68 MANAGE_CONTENT_PERMISSION, COMMENT_CONTENT_PERMISSION, |
67 PUBLISH_CONTENT_PERMISSION}, |
69 PUBLISH_CONTENT_PERMISSION}, |
68 'managers': {ADMIN_USER_ID, 'role:system.Manager', 'role:pyams.Webmaster'}}) |
70 'managers': {ADMIN_USER_ID, |
|
71 'role:{0}'.format(SYSTEM_ADMIN_ROLE), |
|
72 'role:{0}'.format(WEBMASTER_ROLE)}}) |
69 config.register_role({'id': MANAGER_ROLE, |
73 config.register_role({'id': MANAGER_ROLE, |
70 'title': _("Manager (role)"), |
74 'title': _("Manager (role)"), |
71 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
75 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
72 VIEW_SYSTEM_PERMISSION, MANAGE_CONTENT_PERMISSION, |
76 VIEW_SYSTEM_PERMISSION, MANAGE_CONTENT_PERMISSION, |
73 COMMENT_CONTENT_PERMISSION, PUBLISH_CONTENT_PERMISSION}, |
77 COMMENT_CONTENT_PERMISSION, PUBLISH_CONTENT_PERMISSION}, |
74 'managers': {ADMIN_USER_ID, 'role:system.Manager', 'role:pyams.Webmaster', |
78 'managers': {ADMIN_USER_ID, |
|
79 'role:{0}'.format(SYSTEM_ADMIN_ROLE), |
|
80 'role:{0}'.format(WEBMASTER_ROLE), |
75 'role:pyams.Pilot'}}) |
81 'role:pyams.Pilot'}}) |
76 config.register_role({'id': OWNER_ROLE, |
82 config.register_role({'id': OWNER_ROLE, |
77 'title': _("Owner (role)"), |
83 'title': _("Owner (role)"), |
78 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
84 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
79 VIEW_SYSTEM_PERMISSION, MANAGE_ROLES_PERMISSION, |
85 VIEW_SYSTEM_PERMISSION, MANAGE_ROLES_PERMISSION, |
82 'title': _("Contributor (role)"), |
88 'title': _("Contributor (role)"), |
83 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
89 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
84 VIEW_SYSTEM_PERMISSION, |
90 VIEW_SYSTEM_PERMISSION, |
85 CREATE_CONTENT_PERMISSION, MANAGE_CONTENT_PERMISSION, |
91 CREATE_CONTENT_PERMISSION, MANAGE_CONTENT_PERMISSION, |
86 COMMENT_CONTENT_PERMISSION}, |
92 COMMENT_CONTENT_PERMISSION}, |
87 'managers': {ADMIN_USER_ID, 'role:system.Manager', 'role:pyams.Webmaster', |
93 'managers': {ADMIN_USER_ID, |
88 'role:pyams.Pilot', 'role:pyams.Owner'}}) |
94 'role:{0}'.format(SYSTEM_ADMIN_ROLE), |
|
95 'role:{0}'.format(WEBMASTER_ROLE), |
|
96 'role:pyams.Pilot', |
|
97 'role:pyams.Owner'}}) |
89 config.register_role({'id': READER_ROLE, |
98 config.register_role({'id': READER_ROLE, |
90 'title': _("Reader (role)"), |
99 'title': _("Reader (role)"), |
91 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
100 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, MANAGE_PERMISSION, |
92 VIEW_SYSTEM_PERMISSION, COMMENT_CONTENT_PERMISSION}, |
101 VIEW_SYSTEM_PERMISSION, COMMENT_CONTENT_PERMISSION}, |
93 'managers': {ADMIN_USER_ID, 'role:system.Manager', 'role:pyams.Webmaster', |
102 'managers': {ADMIN_USER_ID, |
94 'role:pyams.Pilot', 'role:pyams.Manager', 'role:pyams.Contributor'}}) |
103 'role:{0}'.format(SYSTEM_ADMIN_ROLE), |
|
104 'role:{0}'.format(WEBMASTER_ROLE), |
|
105 'role:pyams.Pilot', |
|
106 'role:pyams.Manager', |
|
107 'role:pyams.Contributor'}}) |
95 config.register_role({'id': OPERATOR_ROLE, |
108 config.register_role({'id': OPERATOR_ROLE, |
96 'title': _("Operator (role)"), |
109 'title': _("Operator (role)"), |
97 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, VIEW_SYSTEM_PERMISSION}, |
110 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION, VIEW_SYSTEM_PERMISSION}, |
98 'managers': {ADMIN_USER_ID, 'role:system.Manager'}}) |
111 'managers': {ADMIN_USER_ID, |
|
112 'role:{0}'.format(SYSTEM_ADMIN_ROLE)}}) |
99 config.register_role({'id': GUEST_ROLE, |
113 config.register_role({'id': GUEST_ROLE, |
100 'title': _("Guest user (role)"), |
114 'title': _("Guest user (role)"), |
101 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION}, |
115 'permissions': {PUBLIC_PERMISSION, VIEW_PERMISSION}, |
102 'managers': {ADMIN_USER_ID, 'role:system.Manager', 'role:pyams.Webmaster', |
116 'managers': {ADMIN_USER_ID, |
103 'role:pyams.Pilot', 'role:pyams.Manager', 'role:pyams.Contributor'}}) |
117 'role:{0}'.format(SYSTEM_ADMIN_ROLE), |
|
118 'role:{0}'.format(WEBMASTER_ROLE), |
|
119 'role:pyams.Pilot', |
|
120 'role:pyams.Manager', |
|
121 'role:pyams.Contributor'}}) |