Penambahan permission dan groups

development.ini

@@ -54,9 +54,12 @@ login_captcha = 0
 ;login_tpl = opensipkd.samsat.jabar.views:templates/login.pt
 ;login_tpl = opensipkd.samsat.jabar.views:templates/login.pt
 ;PBB 
 ;PBB 
 ; pbb.url = postgresql://aagusti:a@localhost:5432/demo2
 ; pbb.url = postgresql://aagusti:a@localhost:5432/demo2
+
 pbb.url = oracle://PBB:A@10.8.50.62/simpbb
 pbb.url = oracle://PBB:A@10.8.50.62/simpbb
 lib_dir = C:\Users\aagus\Project\pbb\instantclient_11_2
 lib_dir = C:\Users\aagus\Project\pbb\instantclient_11_2
 pbb_esppt_files = C:\tmp\pbb_esppt_files
 pbb_esppt_files = C:\tmp\pbb_esppt_files
+pbb_esppt_mirror.url = 
+pbb_esppt_bsre.url = bapenda:!&hfZZR6g@https://esign-service.cirebonkab.go.id/api/sign/pdf@3175101408750004:A4gusti08**&%%
 
 
 ;static_files = %(here)s/../files
 ;static_files = %(here)s/../files
 ;company = Opensipkd
 ;company = Opensipkd

opensipkd/base/scripts/data/routes.csv

@@ -22,5 +22,17 @@ base-partner-edit,/partner/{id}/edit,base,partner,,,,admin,base-partner,Partner
 base-partner-view,/partner/{id}/view,base,partner,,,,admin,base-partner,Partner View,1,0,,,form6.pt,
 base-partner-view,/partner/{id}/view,base,partner,,,,admin,base-partner,Partner View,1,0,,,form6.pt,
 base-partner-delete,/partner/{id}/delete,base,partner,,,,admin,base-partner,Partner Delete,1,0,,,form6.pt,
 base-partner-delete,/partner/{id}/delete,base,partner,,,,admin,base-partner,Partner Delete,1,0,,,form6.pt,
 base-partner-upload,/partner/upload,base,partner,,,,admin,base-partner,Partner Uload,1,0,,,form6.pt,
 base-partner-upload,/partner/upload,base,partner,,,,admin,base-partner,Partner Uload,1,0,,,form6.pt,
-,,,,,,,,,,,,,,,
-,,,,,W,,,,,,,,,,
+base-permission,/permission,base,permission,,view_list,,admin,base-admin,Permission,1,0,,1,form.pt,
+base-permission-act,/permission/{act}/act,base,permission,,,,admin,base-permission,Permission Action,1,0,,,json,
+base-permission-add,/permission/add,base,permission,,,,admin,base-permission,Permission Add,1,0,,,form6.pt,
+base-permission-edit,/permission/{id}/edit,base,permission,,,,admin,base-permission,Permission Edit,1,0,,,form6.pt,
+base-permission-view,/permission/{id}/view,base,permission,,,,admin,base-permission,Permission View,1,0,,,form6.pt,
+base-permission-delete,/permission/{id}/delete,base,permission,,,,admin,base-permission,Permission Delete,1,0,,,form6.pt,
+base-permission-upload,/permission/upload,base,permission,,,,admin,base-permission,Permission Uload,1,0,,,form6.pt,
+base-groups,/groups,base,groups,,view_list,,admin,base-admin,Groups,1,0,,1,form.pt,
+base-groups-act,/groups/{act}/act,base,groups,,,,admin,base-groups,Groups Action,1,0,,,json,
+base-groups-add,/groups/add,base,groups,,,,admin,base-groups,Groups Add,1,0,,,form6.pt,
+base-groups-edit,/groups/{id}/edit,base,groups,,,,admin,base-groups,Groups Edit,1,0,,,form6.pt,
+base-groups-view,/groups/{id}/view,base,groups,,,,admin,base-groups,Groups View,1,0,,,form6.pt,
+base-groups-delete,/groups/{id}/delete,base,groups,,,,admin,base-groups,Groups Delete,1,0,,,form6.pt,
+base-groups-upload,/groups/upload,base,groups,,,,admin,base-groups,Groups Uload,1,0,,,form6.pt,

opensipkd/base/views/groups.py

+import colander
+from deform import widget
+from pyramid.i18n import TranslationStringFactory
+from pyramid.view import view_config
+
+from . import BaseView
+from opensipkd.models import (
+    DBSession,
+    Group,
+    Permission,
+    GroupPermission,
+)
+
+_ = TranslationStringFactory('user')
+
+
+@colander.deferred
+def name_validator(node, kw):
+    return NameValidator(kw['group'])
+
+
+@colander.deferred
+def permissions_widget(node, kw):
+    values = kw.get('permissions_list', [])
+    return widget.CheckboxChoiceWidget(values=values)
+
+
+class AddSchema(colander.Schema):
+    group_name = colander.SchemaNode(
+        colander.String(), validator=name_validator)
+    description = colander.SchemaNode(colander.String(), missing=colander.drop)
+    permissions = colander.SchemaNode(
+        colander.Set(), widget=permissions_widget, title='Hak akses')
+
+
+class EditSchema(AddSchema):
+    id = colander.SchemaNode(colander.Integer(),
+                             widget=widget.HiddenWidget(readonly=True),
+                             missing=colander.drop)
+
+
+class ListSchema(colander.Schema):
+    id = colander.SchemaNode(colander.Integer(), visible=False, title="Action")
+    group_name = colander.SchemaNode(
+        colander.String(), )
+    description = colander.SchemaNode(colander.String())
+
+
+class Views(BaseView):
+    def __init__(self, request):
+        super(Views, self).__init__(request)
+        self.list_schema = ListSchema
+        self.list_route = "base-groups"
+        self.table = Group
+        self.add_schema = AddSchema
+        self.edit_schema = EditSchema
+
+    def get_bindings(self, row=None):
+        return dict(group=row,
+                    permissions_list=get_permissions_list())
+
+    def next_act(self):
+        request = self.req
+        url_dict = request.matchdict
+        params = self.params
+        if url_dict['act'] == 'hon':
+            term = 'term' in params and params['term'] or ''
+            q = self.db_session.query(Group.id, Group.description).filter(
+                Group.description.ilike('%{}%'.format(term))). \
+                order_by(Group.group_name)
+            rows = q.all()
+            r = []
+            for k in rows:
+                d = dict(id=k[0], value=k[1])
+                r.append(d)
+            return r
+
+
+    def save_request(self, values, row=None):
+        insert = not row
+        vals = values.copy()
+        vals.pop('permissions')
+        row = self.save(vals, self.req.user, row)
+        existing = group_permission_set(row)
+        unused = existing - values['permissions']
+        if unused:
+            q = self.db_session.query(GroupPermission).filter_by(group_id=row.id). \
+                filter(GroupPermission.perm_name.in_(unused))
+            q.delete(synchronize_session=False)
+        new = values['permissions'] - existing
+        for perm_name in new:
+            gp = GroupPermission()
+            gp.group_id = row.id
+            gp.perm_name = perm_name
+            self.db_session.add(gp)
+        data = dict(group_name=row.group_name)
+        if insert:
+            ts = _('group-added', default='{group_name} group has been added.', mapping=data)
+
+        else:
+            ts = _('group-updated', default='${group_name} group profile updated', mapping=data)
+        self.ses.flash(ts)
+        return row
+
+    def get_values(self, row, istime=False):
+        values = super(Views, self).get_values(row, istime)
+        values['permissions'] = group_permission_set(row)
+        return values
+
+    def delete_msg(self, row):
+        data = dict(group_name=row.group_name)
+        ts = _(
+            'group-deleted',
+            default='{group_name} group has been deleted.',
+            mapping=data)
+        self.ses.flash(ts)
+
+
+
+def clean_name(s):
+    s = s.strip()
+    while s.find('  ') > -1:
+        s = s.replace('  ', ' ')
+    return s
+
+
+class NameValidator:
+    def __init__(self, group):
+        self.group = group
+
+    def __call__(self, node, value):
+        group_name = clean_name(value)
+        if self.group and self.group.group_name.lower() == group_name.lower():
+            return
+
+        q = self.db_session.query(Group). \
+            filter(Group.group_name.ilike(group_name))
+        found = q.first()
+        if not found:
+            return
+        data = dict(group_name=group_name, gid=found.id)
+        ts = _(
+            'group-name-already-used',
+            default='Group name ${group_name} already used by ID ${gid}',
+            mapping=data)
+        raise colander.Invalid(node, ts)
+
+
+@colander.deferred
+def name_validator(node, kw):
+    return NameValidator(kw['group'])
+
+
+@colander.deferred
+def permissions_widget(node, kw):
+    values = kw.get('permission_list', [])
+    return widget.CheckboxChoiceWidget(values=values)
+
+
+def get_permissions_list():
+    q = DBSession.query(Permission)
+    r = []
+    for perm in q.order_by(Permission.description):
+        row = (perm.perm_name, perm.description)
+        r.append(row)
+    return r
+
+
+def group_permission_set(group):
+    q = DBSession.query(GroupPermission).filter_by(group_id=group.id)
+    r = []
+    for gp in q:
+        r.append(gp.perm_name)
+    return set(r)

opensipkd/base/views/permission.py

+import colander
+from deform import (widget, )
+from pyramid.view import (view_config, )
+
+from opensipkd.models import Permission
+from ..views import BaseView
+
+SESS_ADD_FAILED = 'Tambah permission gagal'
+SESS_EDIT_FAILED = 'Edit permission gagal'
+
+class ListSchema(colander.Schema):
+    id = colander.SchemaNode(
+        colander.String(),
+        missing=colander.drop,
+        widget=widget.HiddenWidget(),
+        visible=False,
+        title="ACT")
+    perm_name = colander.SchemaNode(
+        colander.String(),
+        oid="perm_name",
+        title="Nama")
+    description = colander.SchemaNode(
+        colander.String(),
+        missing=colander.drop,
+        oid="description",
+        title="Diskripsi")
+    
+class EditSchema(ListSchema):
+    pass
+
+class AddSchema(EditSchema):
+    def after_bind(self, schema, kwargs):
+        del schema['id']
+
+class Views(BaseView):
+    def __init__(self, request):
+        super().__init__(request)
+        self.form_params = dict(scripts="")
+        self.list_route = 'base-permission'
+        self.add_schema = AddSchema
+        self.edit_schema = EditSchema
+        self.table = Permission
+        self.list_schema = EditSchema