X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=PLC%2FMethods%2FAdmGrantRoleToPerson.py;h=36e2e250df0f18866207257b99fc7d7155b6aaf7;hb=f7128cb26e05a7671a81b9d3940366cb139884e3;hp=7e10f8817a3473bf2c507902aa87dc95034ad1e0;hpb=a8e81964a7b22a0584667a0449604cccc895955a;p=plcapi.git

diff --git a/PLC/Methods/AdmGrantRoleToPerson.py b/PLC/Methods/AdmGrantRoleToPerson.py
index 7e10f88..36e2e25 100644
--- a/PLC/Methods/AdmGrantRoleToPerson.py
+++ b/PLC/Methods/AdmGrantRoleToPerson.py
@@ -1,67 +1,11 @@
-from PLC.Faults import *
-from PLC.Method import Method
-from PLC.Parameter import Parameter, Mixed
-from PLC.Persons import Person, Persons
-from PLC.Auth import PasswordAuth
-from PLC.Roles import Roles
+from PLC.Methods.AddRoleToPerson import AddRoleToPerson
 
-class AdmGrantRoleToPerson(Method):
+class AdmGrantRoleToPerson(AddRoleToPerson):
     """
-    Grants the specified role to the person.
-    
-    PIs can only grant the tech and user roles to users and techs at
-    their sites. Admins can grant any role to any user.
-
-    Returns 1 if successful, faults otherwise.
+    Deprecated. See AddRoleToPerson.
     """
 
-    roles = ['admin', 'pi']
-
-    accepts = [
-        PasswordAuth(),
-        Mixed(Person.fields['person_id'],
-              Person.fields['email']),
-        Mixed(Parameter(int, "Role identifier"),
-              Parameter(str, "Role name"))
-        ]
-
-    returns = Parameter(int, '1 if successful')
+    status = "deprecated"
 
     def call(self, auth, person_id_or_email, role_id_or_name):
-        # Get all roles
-        roles = {}
-        for role_id, role in Roles(self.api).iteritems():
-            roles[role_id] = role['name']
-            roles[role['name']] = role_id
-
-        if role_id_or_name not in roles:
-            raise PLCInvalidArgument, "Invalid role identifier or name"
-
-        if isinstance(role_id_or_name, int):
-            role_id = role_id_or_name
-        else:
-            role_id = roles[role_id_or_name]
-
-        # Get account information
-        persons = Persons(self.api, [person_id_or_email])
-        if not persons:
-            raise PLCInvalidArgument, "No such account"
-
-        person = persons.values()[0]
-
-        # Authenticated function
-        assert self.caller is not None
-
-        # Check if we can update this account
-        if not self.caller.can_update(person):
-            raise PLCPermissionDenied, "Not allowed to update specified account"
-
-        # Can only grant lesser (higher) roles to others
-        if 'admin' not in self.caller['roles'] and \
-           role_id <= min(self.caller['role_ids']):
-            raise PLCInvalidArgument, "Not allowed to grant that role"
-
-        if role_id not in person['role_ids']:
-            person.add_role(role_id)
-
-        return 1
+        return AddRoleToPerson.call(self, auth, role_id_or_name, person_id_or_email)