Changeset ef118cf for asadb/groups

Timestamp:

Feb 11, 2014, 2:22:25 AM (12 years ago)

Author:

Alex Dehnert <adehnert@…>

Branches:

master, stable, stage

Children:

d4f571c

Parents:

2563230 (diff), e5c5180 (diff)
Note: this is a merge changeset, the changes displayed below correspond to the merge itself.
Use the (diff) links above to see all the changes relative to each parent.

git-author:

Alex Dehnert <adehnert@…> (02/11/14 02:22:25)

git-committer:

Alex Dehnert <adehnert@…> (02/11/14 02:22:25)

Message:

Merge branch 'master' into filters

• master: (107 commits) People lookup: Handle more name formats (ASA-#253) People lookup: specify intended format (ASA-#253) People lookup: handle round numbers (ASA-#253) People lookup: force names to lowercase (ASA-#252) Add hazing and non-discrimination links (ASA-#255) Correct description of submitted link Add missing column heading (ASA-#258) Re-wrap anti-hazing email (ASA-#256) Add recognition date to issues.csv People lookup: fix *small* groups... Add docs for setting up chosen.js Link people lookup tool from membership update page People lookup: mention the data source People lookup: Support large numbers of people People lookup: make the UI more reasonable Basic people lookup support (ASA-#186) Add pre-group-approval warnings Reword membership definition text More thoroughly purge mention of membership lists Standarize on UK-style ndashes ...

Conflicts:

asadb/groups/models.py

Location:

asadb/groups

Files:

• admin.py (modified) (5 diffs)
• diffs.py (modified) (1 diff)
• listdiff.py (added)
• load_people.py (modified) (1 diff)
• migrations/0028_officerrole_admins.py (added)
• migrations/0029_athena_affiliation.py (added)
• models.py (modified) (12 diffs)
• urls.py (modified) (1 diff)
• views.py (modified) (17 diffs)

asadb/groups/admin.py

@@ +1 @@
+import datetime
+
+from django.contrib import admin
+from django.utils.translation import ugettext_lazy
+
+from reversion.admin import VersionAdmin
+
 import groups.models
-from django.contrib import admin
-from reversion.admin import VersionAdmin
+import util.admin
 
 class GroupAdmin(VersionAdmin):
@@ -98 +104 @@
 
 class OfficeHolderAdmin(VersionAdmin):
+    class OfficeHolderPeriodFilter(util.admin.TimePeriodFilter):
+        start_field = 'start_time'
+        end_field = 'end_time'
+
+    def expire_holders(self, request, queryset):
+        rows_updated = queryset.update(end_time=datetime.datetime.now())
+        if rows_updated == 1:
+            message_bit = "1 entry was"
+        else:
+            message_bit = "%s entries were" % rows_updated
+        self.message_user(request, "%s successfully expired." % message_bit)
+    expire_holders.short_description = ugettext_lazy("Expire selected %(verbose_name_plural)s")
+
+    actions = ['expire_holders']
+
     list_display = (
         'id',
@@ -121 +142 @@
     list_filter = [
         'role',
+        OfficeHolderPeriodFilter,
     ]
 admin.site.register(groups.models.OfficeHolder, OfficeHolderAdmin)
@@ -181 +203 @@
         'last_name',
         'account_class',
+        'affiliation_basic',
+        'loose_student',
         'mutable',
         'add_date',
@@ -188 +212 @@
     list_display_links = ( 'id', 'username', )
     search_fields = ( 'username', 'mit_id', 'first_name', 'last_name', 'account_class', )
+    list_filter = (
+        'account_class',
+        'affiliation_basic', 'affiliation_detailed',
+        'loose_student',
+        'mutable',
+    )
 admin.site.register(groups.models.AthenaMoiraAccount, Admin_AthenaMoiraAccount)

asadb/groups/diffs.py

@@ -244 +244 @@
 
 def default_active_pred():
-    status_objs = groups.models.GroupStatus.objects.filter(slug__in=['active', 'suspended', 'nge'])
+    status_objs = groups.models.GroupStatus.objects.filter(slug__in=['active', 'suspended', ])
     status_pks = [status.pk for status in status_objs]
     def pred(version, fields):

asadb/groups/load_people.py

@@ -26 +26 @@
     'last_name',
     'account_class',
+    'affiliation_basic',
+    'affiliation_detailed',
 ]
 

asadb/groups/models.py

@@ -1 +1 @@
 # -*- coding: utf8 -*-
 
-from django.conf import settings
-from django.db import models
-from django.core.exceptions import ValidationError
-from django.core.validators import RegexValidator
-from django.contrib.auth.models import User
-from django.template.defaultfilters import slugify
-import reversion
-
+import collections
 import datetime
 import filecmp
@@ -20 +13 @@
 import urllib2
 
+from django.conf import settings
+from django.db import models
+from django.db.models import Q
+from django.core.exceptions import ValidationError
+from django.core.validators import RegexValidator
+from django.contrib.auth.models import User, Permission
+from django.contrib.contenttypes.models import ContentType
+from django.template.defaultfilters import slugify
+
+import reversion
+
 import mit
 
@@ -30 +34 @@
         )
 
-locker_validator = RegexValidator(regex=r'^[-A-Za-z0-9_.]+$', message='Enter a valid Athena locker.')
+locker_validator = RegexValidator(regex=r'^[-A-Za-z0-9_.]+$', message='Enter a valid Athena locker. This should be the single "word" that appears in "/mit/word/" or "web.mit.edu/word/", with no slashes, spaces, etc..')
 
 class Group(models.Model):
@@ -100 +104 @@
             if as_of == "now": as_of = datetime.datetime.now()
             office_holders = office_holders.filter(start_time__lte=as_of, end_time__gte=as_of)
+        office_holders = office_holders.order_by('role', 'person')
         return office_holders
 
@@ -112 +117 @@
         current_officers = OfficeHolder.current_holders.filter(person=username)
         users_groups = Group.objects.filter(officeholder__in=current_officers).distinct()
+
+    @staticmethod
+    def admin_groups(username, codename='admin_group'):
+        holders = OfficeHolder.current_holders.filter_perm(codename=codename).filter(person=username)
+        users_groups = Group.objects.filter(officeholder__in=holders).distinct()
         return users_groups
 
@@ -395 +405 @@
 
     @classmethod
+    def getRolesGrantingPerm(cls, perm=None, model=Group, codename=None, ):
+        """Get all OfficerRole objects granting a permission
+
+        Either `perm` or `codename` must be supplied, but not both. If
+        `codename` is provided (and `perm` is None), then `perm` the
+        permission corresponding to `model` (default: `Group`) and `codename`
+        will be found and used."""
+
+        if perm is None:
+            ct = ContentType.objects.get_for_model(model)
+            print ct
+            print Permission.objects.filter(content_type=ct)
+            perm = Permission.objects.get(content_type=ct, codename=codename)
+
+        Q_user = Q(user_permissions=perm)
+        Q_group = Q(groups__permissions=perm)
+        users = User.objects.filter(Q_user|Q_group)
+        roles = cls.objects.filter(grant_user__in=users)
+        return roles
+
+    @classmethod
     def retrieve(cls, slug, ):
         return cls.objects.get(slug=slug)
+
 reversion.register(OfficerRole)
 
@@ -407 +439 @@
         )
 
+    def filter_perm(self, perm=None, model=Group, codename=None, ):
+        roles = OfficerRole.getRolesGrantingPerm(perm=perm, model=model, codename=codename)
+        return self.get_query_set().filter(role__in=roles)
+
 class OfficeHolder(models.Model):
     EXPIRE_OFFSET   = datetime.timedelta(seconds=1)
     END_NEVER       = datetime.datetime.max
 
-    person = models.CharField(max_length=30, db_index=True, )
+    person = models.CharField(max_length=30, db_index=True, help_text='Athena username')
     role = models.ForeignKey('OfficerRole', db_index=True, )
     group = models.ForeignKey('Group', db_index=True, )
@@ -433 +469 @@
     def __repr__(self, ):
         return str(self)
+
 reversion.register(OfficeHolder)
 
@@ -506 +543 @@
 
     def __str__(self, ):
-        active = ""
-        if not self.is_active:
-            active = " (inactive)"
-        return "%s%s" % (self.name, active, )
+        return self.name
 
     class Meta:
@@ -528 +562 @@
     def get_query_set(self, ):
         return super(AthenaMoiraAccount_ActiveManager, self).get_query_set().filter(del_date=None)
+
+def student_account_classes():
+    year = datetime.datetime.now().year
+    return ["G"] + [str(yr) for yr in range(year-5, year+10)]
 
 class AthenaMoiraAccount(models.Model):
@@ -535 +573 @@
     last_name       = models.CharField(max_length=45)
     account_class   = models.CharField(max_length=10)
+    affiliation_basic       = models.CharField(max_length=10)
+    affiliation_detailed    = models.CharField(max_length=40)
+    loose_student   = models.BooleanField(default=False, help_text='Whether to use loose or strict determination of student status. Loose means that either the account class or the affiliation should indicate student status; strict means that the affiliation must be student. In general, we use strict; for some people ("secret people") directory information is suppressed and the affiliation will be misleading.')
     mutable         = models.BooleanField(default=True)
     add_date        = models.DateField(help_text="Date when this person was added to the dump.", )
@@ -544 +585 @@
 
     def is_student(self, ):
-        # XXX: Is this... right?
-        return self.account_class == 'G' or self.account_class.isdigit()
+        student_affiliation = (self.affiliation_basic == 'student')
+        student_class = (self.account_class in student_account_classes())
+        return student_affiliation or (student_class and self.loose_student)
+
+    @staticmethod
+    def student_q():
+        q_affiliation = Q(affiliation_basic='student')
+        q_class = Q(account_class__in=student_account_classes())
+        return q_affiliation | (q_class & Q(loose_student=True))
 
     def format(self, ):

asadb/groups/urls.py

@@ -1 +1 @@
 from django.conf.urls.defaults import *
+
+import django.shortcuts
 
 import groups.views
 import space.views
 
+def redirect_view(to):
+    def _redirect_view(request, **kwargs):
+        return django.shortcuts.redirect(to, **kwargs)
+    return _redirect_view
+
 group_patterns = patterns('',
     url(r'^$', groups.views.GroupDetailView.as_view(), name='group-detail', ),
     url(r'^edit/main$', groups.views.manage_main, name='group-manage-main', ),
-    url(r'^edit/officers$', groups.views.manage_officers, name='group-manage-officers', ),
+    url(r'^edit/people$', groups.views.manage_officers, name='group-manage-officers', ),
+    url(r'^edit/officers$', redirect_view('groups:group-manage-officers'), ),
     url(r'^history/$', groups.views.GroupHistoryView.as_view(), name='group-manage-history', ),
     url(r'^space/$', space.views.manage_access, name='group-space-access', ),

asadb/groups/views.py

@@ -4 +4 @@
 import csv
 import datetime
-
-import groups.models
 
 from django.contrib.auth.decorators import user_passes_test, login_required, permission_required
@@ -30 +28 @@
 import django_filters
 
+import groups.models
 from util.db_form_utils import StaticWidget
+import util.db_filters
 from util.emails import email_from_template
 
@@ -129 +129 @@
         for field in self.force_required:
             self.fields[field].required = True
-        self.fields['constitution_url'].help_text = mark_safe("""Please put your current constitution URL or AFS path.<br>If you don't currently know where your constitution is, put "http://mit.edu/asa/start/constitution-req.html" and draft a constitution soon.""")
+        self.fields['constitution_url'].help_text = mark_safe("Please put your current constitution URL or AFS path.")
 
     exec_only_fields = [
@@ -221 +221 @@
 def manage_officers_load_officers(group, ):
     officers = group.officers()
-    people = list(set([ officer.person for officer in officers ]))
+    people = sorted(set([ officer.person for officer in officers ]))
     roles  = groups.models.OfficerRole.objects.all()
 
@@ -573 +573 @@
     treasurer_name = forms.CharField(max_length=50)
     treasurer_kerberos = forms.CharField(min_length=3, max_length=8, )
-    def clean_president(self, ):
+    def clean_president_kerberos(self, ):
         username = self.cleaned_data['president_kerberos']
         validate_athena(username, True, )
         return username
 
-    def clean_treasurer(self, ):
+    def clean_treasurer_kerberos(self, ):
         username = self.cleaned_data['treasurer_kerberos']
         validate_athena(username, True, )
@@ -630 +630 @@
         self.fields['constitution_url'].required = True
         self.fields['constitution_url'].help_text = "Please put a copy of your finalized constitution on a publicly-accessible website (e.g. your group's, or your own, Public folder), and link to it in the box above."
+        self.fields['group_email'].required = True
         self.fields['athena_locker'].required = True
+        self.fields['athena_locker'].help_text = "In general, this is limited to twelve characters. You should stick to letters, numbers, and hyphens. (Underscores and dots are also acceptable, but may cause problems in some situations.)"
+
+        # Specifically, if the group ends up wanting to use scripts.mit.edu,
+        # they will currently be assigned locker.scripts.mit.edu. If they try
+        # to use foo.bar, then https://foo.bar.scripts.mit.edu/ will produce a
+        # certificate name mismatch. Officially, underscores are not allowed in
+        # hostnames, so foo_.scripts.mit.edu may fail with some software.
 
     class Meta(GroupCreateForm.Meta):
@@ -688 +696 @@
             from_email='asa-admin@mit.edu',
         )
-        # XXX: Handle this better
-        if officer_domain != 'mit.edu' or (create_group_list and group_domain != 'mit.edu'):
-            accounts_mail.to = ['asa-groups@mit.edu']
-            accounts_mail.cc = ['asa-db@mit.edu']
-            accounts_mail.subject = "ERROR: " + accounts_mail.subject
-            accounts_mail.body = "Bad domain on officer or group list\n\n" + accounts_mail.body
 
     else:
@@ -820 +822 @@
     return render_to_response('groups/create/startup.html', context, context_instance=RequestContext(request), )
 
+def review_group_check_warnings(group_startup, group, ):
+    warnings = []
+
+    if group.name.startswith("MIT "):
+        warnings.append('Group name starts with "MIT". Generally, we prefer "Foo, MIT" instead.')
+    if "mit" in group.athena_locker.lower():
+        warnings.append('Athena locker name contains "mit", which may be redundant with paths like "http://web.mit.edu/mitfoo" or "/mit/foo/".')
+
+    if group_startup.president_kerberos == group_startup.treasurer_kerberos:
+        warnings.append('President matches Treasurer.')
+    if "%s@mit.edu" % (group_startup.president_kerberos, ) in (group.officer_email, group.group_email):
+        warnings.append('President email matches officer and/or group email.')
+    if group.officer_email == group.group_email:
+        warnings.append('Officer email matches group email.')
+
+    if '@mit.edu' not in group.officer_email or '@mit.edu' not in group.group_email:
+        warnings.append('Officer and/or group email are non-MIT. Ensure that they are not requesting the addresses be created, and consider suggesting they use an MIT list instead.')
+
+    if '.' in group.athena_locker:
+        warnings.append('Athena locker contains a ".". This is not compatible with scripts.mit.edu\'s wildcard certificate, and may cause other problems.')
+    if '_' in group.athena_locker:
+        warnings.append('Athena locker contains a "_". If this locker name gets used in a URL (for example, locker.scripts.mit.edu), it will technically violate the hostname specification and may not work in some clients.')
+    if len(group.athena_locker) > 12:
+        warnings.append('Athena locker is more than twelve characters long. In general, twelve characters is the longest Athena locker an ASA-recognized group can get.')
+
+    return warnings
+
 @permission_required('groups.recognize_group')
 def recognize_normal_group(request, pk, ):
@@ -836 +865 @@
         return render_to_response('groups/create/err.not-applying.html', context, context_instance=RequestContext(request), )
 
+    context['warnings'] = review_group_check_warnings(group_startup, group)
+
     context['msg'] = ""
     if request.method == 'POST':
@@ -842 +873 @@
             group_startup.save()
 
-            group.group_status = groups.models.GroupStatus.objects.get(slug='active')
+            group.group_status = groups.models.GroupStatus.objects.get(slug='suspended')
             group.constitution_url = ""
             group.recognition_date = datetime.datetime.now()
             group.set_updater(request.user)
+
+            note = groups.models.GroupNote(
+                author=request.user.username,
+                body="Approved group for recognition.",
+                acl_read_group=True,
+                acl_read_offices=True,
+                group=group,
+            ).save()
 
             group.save()
@@ -900 +939 @@
     name = django_filters.CharFilter(lookup_type='icontains', label="Name contains")
     abbreviation = django_filters.CharFilter(lookup_type='iexact', label="Abbreviation is")
+    officer_email = django_filters.CharFilter(lookup_type='icontains', label="Officers' list contains")
+
+    account_filter = util.db_filters.MultiNumberFilter(
+        lookup_type='exact', label="Account number",
+        names=('main_account_id', 'funding_account_id', ),
+    )
 
     class Meta:
@@ -906 +951 @@
             'name',
             'abbreviation',
+            'officer_email',
             'activity_category',
             'group_class',
             'group_status',
             'group_funding',
+            'account_filter',
         ]
 
@@ -945 +992 @@
     groups_filterset = GroupFilter(request.GET, the_groups)
     the_groups = groups_filterset.qs
+
     officers = groups.models.OfficeHolder.objects.filter(start_time__lte=datetime.datetime.now(), end_time__gte=datetime.datetime.now())
     officers = officers.filter(group__in=the_groups)
     officers = officers.select_related(depth=1)
+
     role_slugs = ['president', 'treasurer', 'financial', 'reservation']
     roles = groups.models.OfficerRole.objects.filter(slug__in=role_slugs)
     roles = sorted(roles, key=lambda r: role_slugs.index(r.slug))
+
     officers_map = collections.defaultdict(lambda: collections.defaultdict(set))
     for officer in officers:
@@ -958 +1008 @@
         role_list = []
         for role in roles:
-            role_list.append(officers_map[group][role])
+            role_list.append(sorted(officers_map[group][role]))
         officers_data.append((group, role_list))
 
@@ -1004 +1054 @@
         if 'pk' in self.kwargs:
             group = get_object_or_404(groups.models.Group, pk=self.kwargs['pk'])
-            history_entries = reversion.models.Version.objects.get_for_object(group)
+            history_entries = reversion.get_for_object(group)
         else:
             history_entries = reversion.models.Version.objects.all()
@@ -1288 +1338 @@
 def show_nonstudent_officers(request, ):
     student_roles  = groups.models.OfficerRole.objects.filter(require_student=True, )
-    year = datetime.datetime.now().year
-    account_classes = ["G"] + [str(yr) for yr in range(year-5, year+10)]
-    students = groups.models.AthenaMoiraAccount.active_accounts.filter(account_class__in=account_classes)
+    student_q = groups.models.AthenaMoiraAccount.student_q()
+    students = groups.models.AthenaMoiraAccount.active_accounts.filter(student_q)
     office_holders = groups.models.OfficeHolder.current_holders.order_by('group__name', 'role', )
     office_holders = office_holders.filter(role__in=student_roles)
     office_holders = office_holders.exclude(person__in=students.values('username'))
-    office_holders = office_holders.select_related('group', 'role')
+    office_holders = office_holders.select_related('group', 'group__group_status', 'role')
 
     msg = None
@@ -1300 +1349 @@
     if 'sort' in request.GET:
         if request.GET['sort'] == 'group':
-            office_holders = office_holders.order_by('group__name', 'role', 'person', )
+            office_holders = office_holders.order_by('group__name', 'group__group_status', 'role', 'person', )
+        elif request.GET['sort'] == 'status':
+            office_holders = office_holders.order_by('group__group_status', 'group__name', 'role', 'person', )
         elif request.GET['sort'] == 'role':
-            office_holders = office_holders.order_by('role', 'group__name', 'person', )
+            office_holders = office_holders.order_by('role', 'group__group_status', 'group__name', 'person', )
         elif request.GET['sort'] == 'person':
-            office_holders = office_holders.order_by('person', 'group__name', 'role', )
+            office_holders = office_holders.order_by('person', 'group__group_status', 'group__name', 'role', )
         else:
             msg = 'Unknown sort key "%s".' % (request.GET['sort'], )