fixup! access_token: don't allow RestrictedAccessToken without assignments

use PAS API to verify presence of valid logins

fixup! access_token: don't allow RestrictedAccessToken without assignments
use PAS API to verify presence of valid logins
39e4a362 · Jérome Perrin · 01f3d079 · 39e4a362
Commit 39e4a362 authored Mar 18, 2019 by Jérome Perrin
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 5 deletions

bt5/erp5_access_token/SkinTemplateItem/portal_skins/erp5_access_token/RestrictedAccessToken_getUserValue.py ...s/erp5_access_token/RestrictedAccessToken_getUserValue.py +6 -5

No files found.
--- a/bt5/erp5_access_token/SkinTemplateItem/portal_skins/erp5_access_token/RestrictedAccessToken_getUserValue.py
+++ b/bt5/erp5_access_token/SkinTemplateItem/portal_skins/erp5_access_token/RestrictedAccessToken_getUserValue.py
@@ -38,12 +38,13 @@ if access_token_document.getValidationState() == 'validated':
            break
        else:
          return None
-        for login in agent_document.contentValues(
-            portal_type=context.getPortalObject().getPortalLoginTypeList()):
-          if login.getValidationState() == 'validated':
-            break
-        else:
+
+        user, = context.getPortalObject().acl_users.searchUsers(
+            exact_match=True,
+            id=agent_document.Person_getUserId())
+        if not user['login_list']:
          return None
+
      result = agent_document

 return result