mirror of
https://github.com/QingdaoU/OnlineJudge.git
synced 2025-01-06 04:21:51 +00:00
Merge branch 'dev'
* dev: 修复用户禁用功能的部分bug 增加禁用用户的功能
This commit is contained in:
commit
1c0d5aedbb
@ -5,7 +5,7 @@ from functools import wraps
|
||||
|
||||
from django.http import HttpResponseRedirect
|
||||
|
||||
from utils.shortcuts import error_response
|
||||
from utils.shortcuts import error_response, error_page
|
||||
from .models import SUPER_ADMIN, ADMIN
|
||||
|
||||
|
||||
@ -23,6 +23,11 @@ class BasePermissionDecorator(object):
|
||||
self.request = args[0]
|
||||
|
||||
if self.check_permission():
|
||||
if self.request.user.is_forbidden is True:
|
||||
if self.request.is_ajax():
|
||||
return error_response(u"您已被禁用,请联系管理员")
|
||||
else:
|
||||
return error_page(self.request, u"您已被禁用,请联系管理员")
|
||||
return self.func(*args, **kwargs)
|
||||
else:
|
||||
if self.request.is_ajax():
|
||||
@ -46,4 +51,4 @@ class super_admin_required(BasePermissionDecorator):
|
||||
|
||||
class admin_required(BasePermissionDecorator):
|
||||
def check_permission(self):
|
||||
return self.request.user.is_authenticated() and self.request.user.admin_type in [SUPER_ADMIN, ADMIN]
|
||||
return self.request.user.is_authenticated() and self.request.user.admin_type in [SUPER_ADMIN, ADMIN]
|
||||
|
20
account/migrations/0019_user_is_forbidden.py
Normal file
20
account/migrations/0019_user_is_forbidden.py
Normal file
@ -0,0 +1,20 @@
|
||||
# -*- coding: utf-8 -*-
|
||||
# Generated by Django 1.9.4 on 2016-03-26 16:39
|
||||
from __future__ import unicode_literals
|
||||
|
||||
from django.db import migrations, models
|
||||
|
||||
|
||||
class Migration(migrations.Migration):
|
||||
|
||||
dependencies = [
|
||||
('account', '0018_auto_20160217_0920'),
|
||||
]
|
||||
|
||||
operations = [
|
||||
migrations.AddField(
|
||||
model_name='user',
|
||||
name='is_forbidden',
|
||||
field=models.BooleanField(default=False),
|
||||
),
|
||||
]
|
@ -41,6 +41,8 @@ class User(AbstractBaseUser):
|
||||
tfa_token = models.CharField(max_length=40, blank=True, null=True)
|
||||
# open api key
|
||||
openapi_appkey = models.CharField(max_length=35, blank=True, null=True)
|
||||
# 是否禁用用户
|
||||
is_forbidden = models.BooleanField(default=False)
|
||||
|
||||
USERNAME_FIELD = 'username'
|
||||
REQUIRED_FIELDS = []
|
||||
|
@ -39,7 +39,7 @@ class UserSerializer(serializers.ModelSerializer):
|
||||
class Meta:
|
||||
model = User
|
||||
fields = ["id", "username", "real_name", "email", "admin_type",
|
||||
"create_time", "last_login", "two_factor_auth", "openapi_appkey"]
|
||||
"create_time", "last_login", "two_factor_auth", "openapi_appkey", "is_forbidden"]
|
||||
|
||||
|
||||
class EditUserSerializer(serializers.Serializer):
|
||||
@ -51,6 +51,7 @@ class EditUserSerializer(serializers.Serializer):
|
||||
admin_type = serializers.IntegerField(default=0)
|
||||
openapi = serializers.BooleanField()
|
||||
tfa_auth = serializers.BooleanField()
|
||||
is_forbidden = serializers.BooleanField()
|
||||
|
||||
|
||||
class ApplyResetPasswordSerializer(serializers.Serializer):
|
||||
|
@ -65,7 +65,7 @@ class UserLoginAPIView(APIView):
|
||||
return serializer_invalid_response(serializer)
|
||||
|
||||
|
||||
@login_required
|
||||
#@login_required
|
||||
def logout(request):
|
||||
auth.logout(request)
|
||||
return http.HttpResponseRedirect("/")
|
||||
@ -228,6 +228,9 @@ class UserAdminAPIView(APIView):
|
||||
user.two_factor_auth = True
|
||||
user.tfa_token = rand_str()
|
||||
|
||||
# 后台控制用户是否被禁用
|
||||
user.is_forbidden = data["is_forbidden"]
|
||||
|
||||
user.save()
|
||||
return success_response(UserSerializer(user).data)
|
||||
else:
|
||||
|
@ -22,6 +22,7 @@ require(["jquery", "avalon", "csrfToken", "bsAlert", "pager", "validator"],
|
||||
userId: -1,
|
||||
openAPI: false,
|
||||
tfa_auth: false,
|
||||
is_forbidden: false,
|
||||
|
||||
pager: {
|
||||
getPage: function (page) {
|
||||
@ -36,6 +37,7 @@ require(["jquery", "avalon", "csrfToken", "bsAlert", "pager", "validator"],
|
||||
vm.userId = user.id;
|
||||
vm.tfa_auth = user.two_factor_auth;
|
||||
vm.openAPI = user.openapi_appkey ? true: false;
|
||||
vm.is_forbidden = user.is_forbidden ? true: false;
|
||||
|
||||
vm.isEditing = true;
|
||||
},
|
||||
@ -83,7 +85,8 @@ require(["jquery", "avalon", "csrfToken", "bsAlert", "pager", "validator"],
|
||||
id: vm.userId,
|
||||
admin_type: vm.adminType,
|
||||
openapi: vm.openAPI,
|
||||
tfa_auth: vm.tfa_auth
|
||||
tfa_auth: vm.tfa_auth,
|
||||
is_forbidden : vm.is_forbidden
|
||||
};
|
||||
if ($("#password").val() !== "")
|
||||
data.password = $("#password").val();
|
||||
@ -109,4 +112,4 @@ require(["jquery", "avalon", "csrfToken", "bsAlert", "pager", "validator"],
|
||||
});
|
||||
avalon.scan();
|
||||
|
||||
});
|
||||
});
|
||||
|
@ -84,6 +84,10 @@
|
||||
<label>两步验证</label>
|
||||
<input name="tfa_auth" type="checkbox" class="form-control" ms-duplex-checked="tfa_auth">
|
||||
</div>
|
||||
<div class="form-group col-md-3">
|
||||
<label>是否禁用用户</label>
|
||||
<input name="is_forbidden" type="checkbox" class="form-control" ms-duplex-checked="is_forbidden">
|
||||
</div>
|
||||
</div>
|
||||
<div class="form-group">
|
||||
<button type="submit" class="btn btn-success">保存修改</button>
|
||||
@ -91,4 +95,4 @@
|
||||
</form>
|
||||
</div>
|
||||
</div>
|
||||
<script src="/static/js/app/admin/user/userList.js"></script>
|
||||
<script src="/static/js/app/admin/user/userList.js"></script>
|
||||
|
Loading…
Reference in New Issue
Block a user