- # check permission : it not admin, is the user affiliated with the right site
- if 'admin' not in self.caller['roles']:
- # check caller is affiliated with this site
- if self.caller['person_id'] not in site['person_ids']:
- raise PLCPermissionDenied, "Not a member of the hosting site %s"%site['abbreviated_site']
-
- required_min_role = tag_type ['min_role_id']
- if required_min_role is not None and \
- min(self.caller['role_ids']) > required_min_role:
- raise PLCPermissionDenied, "Not allowed to modify the specified site setting, requires role %d",required_min_role
+ sites = Sites (self.api, site_tag['site_id'])
+ if not sites:
+ raise PLCInvalidArgument, "No such site %d"%site_tag['site_id']
+ site=sites[0]
+
+ # check authorizations
+ site.caller_may_write_tag(self.api,self.caller,tag_type)