test/crm
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: only allow sales manager to create and update public views

Browse Source
This commit is contained in:
Shariq Ansari 2024-01-19 22:00:02 +05:30
parent dfc78b16e8
commit 0d49fa4737
4 changed files with 52 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
crm/api/session.py
View File

@ -16,6 +16,10 @@ def get_users():
for user in users: for user in users:
if frappe.session.user == user.name: if frappe.session.user == user.name:
user.session_user = True user.session_user = True
user.is_manager = (
"Sales Manager" in frappe.get_roles(user.name) or user.name == "Administrator"
)
return users return users
@frappe.whitelist() @frappe.whitelist()

10
crm/fcrm/doctype/crm_view_settings/crm_view_settings.py
View File

@ -63,6 +63,16 @@ def delete(name):
if frappe.db.exists("CRM View Settings", name): if frappe.db.exists("CRM View Settings", name):
frappe.delete_doc("CRM View Settings", name) frappe.delete_doc("CRM View Settings", name)
@frappe.whitelist()
def public(name, value):
if "Sales Manager" not in frappe.get_roles() or frappe.session.user != "Administrator":
frappe.throw("Not permitted", frappe.PermissionError)
doc = frappe.get_doc("CRM View Settings", name)
doc.public = value
doc.user = "" if value else frappe.session.user
doc.save()
@frappe.whitelist() @frappe.whitelist()
def pin(name, value): def pin(name, value):
doc = frappe.get_doc("CRM View Settings", name) doc = frappe.get_doc("CRM View Settings", name)

36
frontend/src/components/ViewControls.vue
View File

@ -18,7 +18,10 @@
</Dropdown> </Dropdown>
</div> </div>
<div class="flex items-center gap-2"> <div class="flex items-center gap-2">
<div v-if="viewUpdated" class="flex items-center gap-2 border-r pr-2"> <div
v-if="viewUpdated && (!view.public || isManager())"
class="flex items-center gap-2 border-r pr-2"
>
<Button label="Cancel" @click="cancelChanges" /> <Button label="Cancel" @click="cancelChanges" />
<Button <Button
:label="view?.name ? 'Save Changes' : 'Create View'" :label="view?.name ? 'Save Changes' : 'Create View'"
@ -76,8 +79,9 @@ import Filter from '@/components/Filter.vue'
import ColumnSettings from '@/components/ColumnSettings.vue' import ColumnSettings from '@/components/ColumnSettings.vue'
import { globalStore } from '@/stores/global' import { globalStore } from '@/stores/global'
import { viewsStore } from '@/stores/views' import { viewsStore } from '@/stores/views'
import { usersStore } from '@/stores/users'
import { useDebounceFn } from '@vueuse/core' import { useDebounceFn } from '@vueuse/core'
import { createResource, Dropdown, call } from 'frappe-ui' import { createResource, Dropdown, call, FeatherIcon } from 'frappe-ui'
import { computed, ref, defineModel, onMounted, watch, h } from 'vue' import { computed, ref, defineModel, onMounted, watch, h } from 'vue'
import { useRouter, useRoute } from 'vue-router' import { useRouter, useRoute } from 'vue-router'
@ -94,6 +98,7 @@ const props = defineProps({
const { $dialog } = globalStore() const { $dialog } = globalStore()
const { reload: reloadView, getView } = viewsStore() const { reload: reloadView, getView } = viewsStore()
const { isManager } = usersStore()
const list = defineModel() const list = defineModel()
const loadMore = defineModel('loadMore') const loadMore = defineModel('loadMore')
@ -123,6 +128,7 @@ const view = ref({
rows: '', rows: '',
load_default_columns: false, load_default_columns: false,
pinned: false, pinned: false,
public: false,
}) })
const pageLength = computed(() => list.value?.data?.page_length) const pageLength = computed(() => list.value?.data?.page_length)
@ -159,6 +165,7 @@ function getParams() {
route_name: _view.route_name, route_name: _view.route_name,
load_default_columns: _view.row, load_default_columns: _view.row,
pinned: _view.pinned, pinned: _view.pinned,
public: _view.public,
} }
} else { } else {
view.value = { view.value = {
@ -171,6 +178,7 @@ function getParams() {
route_name: '', route_name: '',
load_default_columns: true, load_default_columns: true,
pinned: false, pinned: false,
public: false,
} }
} }
@ -345,7 +353,7 @@ const viewActions = computed(() => {
}, },
] ]
if (route.query.view) { if (route.query.view && (!view.value.public || isManager())) {
actions[0].items.push( actions[0].items.push(
{ {
label: 'Rename', label: 'Rename',
@ -360,6 +368,18 @@ const viewActions = computed(() => {
} }
) )
if (route.query.view && isManager()) {
actions[0].items.push({
label: view.value.public ? 'Make Private' : 'Make Public',
icon: () =>
h(FeatherIcon, {
name: view.value.public ? 'lock' : 'unlock',
class: 'h-4 w-4',
}),
onClick: () => publicView(),
})
}
actions.push({ actions.push({
group: 'Delete View', group: 'Delete View',
hideLabel: true, hideLabel: true,
@ -400,6 +420,16 @@ function renameView() {
showViewModal.value = true showViewModal.value = true
} }
function publicView() {
call('crm.fcrm.doctype.crm_view_settings.crm_view_settings.public', {
name: route.query.view,
value: !view.value.public,
}).then(() => {
view.value.public = !view.value.public
reloadView()
})
}
function pinView() { function pinView() {
call('crm.fcrm.doctype.crm_view_settings.crm_view_settings.pin', { call('crm.fcrm.doctype.crm_view_settings.crm_view_settings.pin', {
name: route.query.view, name: route.query.view,

5
frontend/src/stores/users.js
View File

@ -42,8 +42,13 @@ export const usersStore = defineStore('crm-users', () => {
return usersByName[email] return usersByName[email]
} }
function isManager(email) {
return getUser(email).is_manager
}
return { return {
users, users,
getUser, getUser,
isManager,
} }
}) })