Mirror
/
zulip
mirror of https://github.com/zulip/zulip.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zulip/zerver/management/commands/knight.py

60 lines
2.2 KiB
Python
Raw Blame History

from __future__ import absolute_import
from optparse import make_option
from django.core.management.base import BaseCommand, CommandError
from django.core.exceptions import ValidationError
from guardian.shortcuts import assign_perm, remove_perm
from zerver.models import UserProfile
class Command(BaseCommand):
help = """Give an existing user administrative permissions over their (own) Realm.
ONLY perform this on customer request from an authorized person.
"""
option_list = BaseCommand.option_list + (
make_option('-f', '--for-real',
dest='ack',
action="store_true",
default=False,
help='Acknowledgement that this is done according to policy.'),
make_option('--revoke',
dest='grant',
action="store_false",
default=True,
help='Remove an administrator\'s rights.'),
)
def handle(self, *args, **options):
try:
email = args[0]
except ValueError:
raise CommandError("""Please specify a user.""")
try:
profile = UserProfile.objects.get(email=email)
except ValidationError:
raise CommandError("No such user.")
if options['grant']:
if profile.has_perm('administer', profile.realm):
raise CommandError("User already has permission for this realm.")
else:
if options['ack']:
assign_perm('administer', profile, profile.realm)
print "Done!"
else:
print "Would have made %s an administrator for %s" % (email, profile.realm.domain)
else:
if profile.has_perm('administer', profile.realm):
if options['ack']:
remove_perm('administer', profile, profile.realm)
print "Done!"
else:
print "Would have removed %s's administrator rights on %s" % (email,
profile.realm.domain)
else:
raise CommandError("User did not have permission for this realm!")
Reference in New Issue View Git Blame Copy Permalink