Add Auditor role to allow a software instance user access a Hosting...

Add Auditor role to allow a software instance user access a Hosting Subscription related by one Slave Instance. So, when a Slave Instance and a software instance use the same computer partition and software release, the software instance user can access the Hosting Subscription.

master/bt5/vifib_erp5/PortalTypeRolesTemplateItem/Hosting%20Subscription.xml

@@ -9,4 +9,9 @@
    <property id='base_category_script'>ERP5Type_getSecurityCategoryFromSelf</property>
    <multi_property id='base_category'>aggregate</multi_property>
   </role>
+  <role id='Auditor'>
+   <property id='title'>Slave Instance related by Software Instance</property>
+   <property id='base_category_script'>ERP5Type_getCategorySecurityFromSoftwareInstanceByHostingSubscription</property>
+   <multi_property id='base_category'>source</multi_property>
+  </role>
 </type_roles>
\ No newline at end of file

master/bt5/vifib_erp5/SkinTemplateItem/portal_skins/vifib_core/ERP5Type_getCategorySecurityFromSoftwareInstanceByHostingSubscription.xml

+<?xml version="1.0"?>
+<ZopeData>
+  <record id="1" aka="AAAAAAAAAAE=">
+    <pickle>
+      <global name="PythonScript" module="Products.PythonScripts.PythonScript"/>
+    </pickle>
+    <pickle>
+      <dictionary>
+        <item>
+            <key> <string>Script_magic</string> </key>
+            <value> <int>3</int> </value>
+        </item>
+        <item>
+            <key> <string>_bind_names</string> </key>
+            <value>
+              <object>
+                <klass>
+                  <global name="NameAssignments" module="Shared.DC.Scripts.Bindings"/>
+                </klass>
+                <tuple/>
+                <state>
+                  <dictionary>
+                    <item>
+                        <key> <string>_asgns</string> </key>
+                        <value>
+                          <dictionary>
+                            <item>
+                                <key> <string>name_container</string> </key>
+                                <value> <string>container</string> </value>
+                            </item>
+                            <item>
+                                <key> <string>name_context</string> </key>
+                                <value> <string>context</string> </value>
+                            </item>
+                            <item>
+                                <key> <string>name_m_self</string> </key>
+                                <value> <string>script</string> </value>
+                            </item>
+                            <item>
+                                <key> <string>name_subpath</string> </key>
+                                <value> <string>traverse_subpath</string> </value>
+                            </item>
+                          </dictionary>
+                        </value>
+                    </item>
+                  </dictionary>
+                </state>
+              </object>
+            </value>
+        </item>
+        <item>
+            <key> <string>_body</string> </key>
+            <value> <string># XXX For now, this script requires proxy manager\n
+\n
+# base_category_list : list of category values we need to retrieve\n
+# user_name : string obtained from getSecurityManager().getUser().getUserName() [NuxUserGroup]\n
+#             or from getSecurityManager().getUser().getId() [PluggableAuthService with ERP5GroupManager]\n
+# object : object which we want to assign roles to.\n
+# portal_type : portal type of object\n
+\n
+# must always return a list of dicts\n
+\n
+from Products.ZSQLCatalog.SQLCatalog import Query, ComplexQuery\n
+category_list = []\n
+\n
+if obj is None:\n
+  return []\n
+\n
+portal = obj.getPortalObject()\n
+\n
+state_list = portal.getPortalCurrentInventoryStateList() + \\\n
+  portal.getPortalReservedInventoryStateList() + \\\n
+  portal.getPortalTransitInventoryStateList()\n
+\n
+sale_packing_list_line = portal.portal_catalog.getResultValue(\n
+      aggregate_uid=obj.getUid(),\n
+      portal_type="Sale Packing List Line",\n
+      simulation_state=state_list)\n
+\n
+if sale_packing_list_line is None:\n
+  return []\n
+\n
+computer_partition = sale_packing_list_line.getAggregateValue(\n
+  portal_type="Computer Partition")\n
+software_release = sale_packing_list_line.getAggregateValue(\n
+  portal_type="Software Release")\n
+\n
+query = ComplexQuery(\n
+  Query(aggregate_relative_url=computer_partition.getRelativeUrl()),\n
+  Query(aggregate_relative_url=software_release.getRelativeUrl()),\n
+  operator="AND",\n
+)\n
+catalog_result = portal.portal_catalog(portal_type="Sale Packing List Line",\n
+  simulation_state=state_list,\n
+  aggregate_relative_url=query,\n
+)\n
+for sale_packing_list_line in catalog_result:\n
+  software_instance = sale_packing_list_line.getAggregateValue(\n
+    portal_type="Software Instance")\n
+  if software_instance is not None:\n
+    return {"Auditor": [software_instance.getReference(),]}\n
+\n
+return category_list\n
+</string> </value>
+        </item>
+        <item>
+            <key> <string>_params</string> </key>
+            <value> <string>base_category_list, user_name, obj, portal_type</string> </value>
+        </item>
+        <item>
+            <key> <string>_proxy_roles</string> </key>
+            <value>
+              <tuple>
+                <string>Manager</string>
+              </tuple>
+            </value>
+        </item>
+        <item>
+            <key> <string>id</string> </key>
+            <value> <string>ERP5Type_getCategorySecurityFromSoftwareInstanceByHostingSubscription</string> </value>
+        </item>
+      </dictionary>
+    </pickle>
+  </record>
+</ZopeData>

master/bt5/vifib_erp5/bt/revision

-177
\ No newline at end of file
+178
\ No newline at end of file