# -*- coding: utf-8 -*- ############################################################################## # # Copyright (c) 2010 Nexedi SARL and Contributors. All Rights Reserved. # Fabien Morin <fabien@nexedi.com> # Mohamadou Mbengue <mmbengue@gmail.com> # # WARNING: This program as such is intended to be used by professional # programmers who take the whole responsability of assessing all potential # consequences resulting from its eventual inadequacies and bugs # End users who are looking for a ready-to-use solution with commercial # garantees and support are strongly adviced to contract a Free Software # Service Company # # This program is Free Software; you can redistribute it and/or # modify it under the terms of the GNU General Public License # as published by the Free Software Foundation; either version 2 # of the License, or (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. # ############################################################################## from Testing import ZopeTestCase from Products import ERP5Security from Products import PluggableAuthService from zLOG import LOG, WARNING, INFO def allowAccessOnContributionRegistryPortalTypes(self): ''' Set Type Acquire Local Role ''' self.portal = self.getPortalObject() portal_contribution_registry = self.portal.portal_contribution_registry pt_title_list = [p.getDestinationPortalType() for p in portal_contribution_registry.contentValues()] exclude_pt_title_list = ['Web Page', 'DMS Ingestion', 'Default Predicate'] for pt_title in pt_title_list: if pt_title not in exclude_pt_title_list: portal_type_object = self.portal.portal_types.getTypeInfo(pt_title) #set acquired local role on the portal type portal_type_object.setTypeAcquireLocalRole(1) return '- Access on Contribution Registry Portal Types allowed' def allowAccessOnPersonAndOrganisation(self): '''Add local role on person and organisation to give administrative agent access. ''' portal_type_list = map(self.getPortalObject().portal_types.getTypeInfo, ('Person', 'Person Module', 'Organisation', 'Organisation Module')) role_category_list = ['role/gouvernement'] for ptype in portal_type_list: role_info_list=[role_info.getTitle() for role_info in ptype.contentValues(portal_type='Role Information')] if 'Agent Administratif' not in role_info_list: ptype.newContent(portal_type='Role Information', title='Agent Administratif', role_name='Auditor', role_category_list=role_category_list) for ptype in portal_type_list: ptype.updateRoleMapping() return '- Access on Person and Organisation allowed for administrative agent' def enableEgovProcedureLogin(self, portal_type): ''' set properties to enable the login on Person and Organisation and subcription forms (citizen, company, agent) ''' portal = self.getPortalObject() acl_users = portal.acl_users erp5security_dispatcher = acl_users.manage_addProduct['ERP5eGovSecurity'] # add the portal_type in Egov portal_type_list if {'meta_type': 'EGOV User Manager', 'id': 'egov_users'} in \ erp5security_dispatcher._d._objects: ptype_list = acl_users.egov_users.portal_type_list if not portal_type in ptype_list: ptype_list = ptype_list + (portal_type,) acl_users.egov_users.manage_changeProperties(portal_type_list=ptype_list,) if {'meta_type': 'EGOV Group Manager', 'id': 'egov_groups'} in \ erp5security_dispatcher._d._objects : ptype_list = acl_users.egov_groups.portal_type_list if not portal_type in ptype_list: ptype_list = ptype_list + (portal_type,) acl_users.egov_groups.manage_changeProperties(portal_type_list=ptype_list,) return '- %s Login Enabled' % portal_type def setUpEGovSecurityManager(self): '''use safi PAS to be able to login organisation''' portal = self.getPortalObject() acl_users = portal.acl_users # Add EGOVUserManager ZopeTestCase.installProduct('ERP5eGovSecurity') erp5security_dispatcher = acl_users.manage_addProduct['ERP5eGovSecurity'] # don't add it if it's already here if {'meta_type': 'EGOV User Manager', 'id': 'egov_users'} not in \ erp5security_dispatcher._d._objects: erp5security_dispatcher.addEGOVUserManager('egov_users') if {'meta_type': 'EGOV Group Manager', 'id': 'egov_groups'} not in \ erp5security_dispatcher._d._objects : erp5security_dispatcher.addEGOVGroupManager('egov_groups') # Register ERP5UserManager Interface acl_users.egov_users.manage_activateInterfaces(('IAuthenticationPlugin', 'IUserEnumerationPlugin',)) acl_users.egov_groups.manage_activateInterfaces(('IGroupsPlugin',)) # desactivate the erp5 plugin plugins = acl_users.egov_groups.plugins interface = plugins._getInterfaceFromName('IGroupsPlugin') if 'erp5_groups' in list(plugins._getPlugins(interface)): plugins.deactivatePlugin( interface, 'erp5_groups') plugins = acl_users.egov_users.plugins interface = plugins._getInterfaceFromName('IAuthenticationPlugin') if 'erp5_users' in list(plugins._getPlugins(interface)): plugins.deactivatePlugin( interface, 'erp5_users') interface = plugins._getInterfaceFromName('IUserEnumerationPlugin') if 'erp5_users' in list(plugins._getPlugins(interface)): plugins.deactivatePlugin( interface, 'erp5_users') # set properties to enable the login on Person and Organisation # and subcription forms (citizen, company, agent) acl_users.egov_users.manage_changeProperties(portal_type_list=[ 'Person', 'Organisation'],) acl_users.egov_groups.manage_changeProperties(portal_type_list=[ 'Person', 'Organisation'],) return '- EGOV security set up completed' def publishAllWebPages(self): '''web pages are accessible by anonymous users only if they are published''' web_page_module = self.getPortalObject().web_page_module for web_page in web_page_module.contentValues(): if web_page.getValidationState() != 'published': web_page.publish() return '- All web pages are published' def allowAddingEGovTypes(self): '''Allow adding instance of portal_type EGov Type and Meta EGov Type''' types_tool = self.getPortalObject().portal_types.getTypeInfo() allowed_content_type_list = types_tool.getTypeAllowedContentTypeList() allowed_content_type_list.append('Meta EGov Type') allowed_content_type_list.append('EGov Type') types_tool.setTypeAllowedContentTypeList(allowed_content_type_list) return '- Instance of EGov Type and Meta EGov Type are allowed' def setUpInstance(self): '''call all other set up method to prepare the site for eGOV Instance''' message_list = [] message_list.append(setUpEGovSecurityManager(self)) message_list.append(allowAccessOnPersonAndOrganisation(self)) message_list.append(allowAccessOnContributionRegistryPortalTypes(self)) message_list.append(publishAllWebPages(self)) message_list.append(allowAddingEGovTypes(self)) message_list.append('') message_list.append('Set Up sequence completed') return '\n'.join(message_list)