making planning accessible for team manager of pro users

2019-02-19 20:04:02 +01:00
parent a0bd17b593
commit 8575443220
6 changed files with 61 additions and 17 deletions
--- a/rowers/views/statements.py
+++ b/rowers/views/statements.py
@@ -88,7 +88,7 @@ from rowers.models import (
    microcyclecheckdates,mesocyclecheckdates,macrocyclecheckdates,
    TrainingMesoCycleForm, TrainingMicroCycleForm,
    RaceLogo,RowerBillingAddressForm,PaidPlan,
-    PlannedSessionComment,CoachRequest,CoachOffer,
+    PlannedSessionComment,CoachRequest,CoachOffer,checkaccessplanuser
    )
 from rowers.models import (
    RowerPowerForm,RowerForm,GraphImage,AdvancedWorkoutForm,
@@ -300,6 +300,39 @@ def getrequestrower(request,rowerid=0,userid=0,notpermanent=False):

    return r

+def getrequestplanrower(request,rowerid=0,userid=0,notpermanent=False):
+
+    userid = int(userid)
+    rowerid = int(rowerid)
+
+    if notpermanent == False:
+        if rowerid == 0 and 'rowerid' in request.session:
+            rowerid = request.session['rowerid']
+            
+        if userid != 0:
+            rowerid = 0
+        
+    try:
+        
+        if rowerid != 0:
+            r = Rower.objects.get(id=rowerid)
+        elif userid != 0:
+            u = User.objects.get(id=userid)
+            r = getrower(u)
+        else:
+	    r = getrower(request.user)
+            
+    except Rower.DoesNotExist:
+        raise Http404("Rower doesn't exist")
+
+    if not checkaccessplanuser(request.user,r):
+        raise PermissionDenied("You have no access to this user")
+
+    if notpermanent == False:
+        request.session['rowerid'] = r.id
+
+    return r
+

 def getrower(user):
    try: