[Feature] Changes required for non public tenants (#370)

Co-authored-by: Tim Lorsbach <tim@lorsba.ch> Reviewed-on: enviPath/enviPy#370
2026-04-22 06:08:39 +12:00
parent b508511cd6
commit 8498e59fa1
13 changed files with 249 additions and 88 deletions
--- a/epdb/logic.py
+++ b/epdb/logic.py
@ -264,8 +264,12 @@ class GroupManager(object):
        return bool(re.findall(GroupManager.group_pattern, url))

    @staticmethod
-    def create_group(current_user, name, description):
+    def create_group(current_user, name, description, *args, **kwargs):
        g = Group()
+
+        if "uuid" in kwargs:
+            g.uuid = kwargs["uuid"]
+
        # Clean for potential XSS
        g.name = nh3.clean(name, tags=s.ALLOWED_HTML_TAGS).strip()
        g.description = nh3.clean(description, tags=s.ALLOWED_HTML_TAGS).strip()
@ -341,52 +345,17 @@ class PackageManager(object):

    @staticmethod
    def readable(user, package):
-        if (
-            UserPackagePermission.objects.filter(package=package, user=user).exists()
-            or GroupPackagePermission.objects.filter(
-                package=package, group__in=GroupManager.get_groups(user)
-            )
-            or package.reviewed is True
-            or user.is_superuser
-        ):
-            return True
-
-        return False
+        return (
+            PackageManager.has_package_permission(user, package, "read") | package.reviewed is True
+        )

    @staticmethod
    def writable(user, package):
-        if (
-            UserPackagePermission.objects.filter(
-                package=package, user=user, permission=Permission.WRITE[0]
-            ).exists()
-            or GroupPackagePermission.objects.filter(
-                package=package,
-                group__in=GroupManager.get_groups(user),
-                permission=Permission.WRITE[0],
-            ).exists()
-            or UserPackagePermission.objects.filter(
-                package=package, user=user, permission=Permission.ALL[0]
-            ).exists()
-            or user.is_superuser
-        ):
-            return True
-        return False
+        return PackageManager.has_package_permission(user, package, "write")

    @staticmethod
    def administrable(user, package):
-        if (
-            UserPackagePermission.objects.filter(
-                package=package, user=user, permission=Permission.ALL[0]
-            ).exists()
-            or GroupPackagePermission.objects.filter(
-                package=package,
-                group__in=GroupManager.get_groups(user),
-                permission=Permission.ALL[0],
-            ).exists()
-            or user.is_superuser
-        ):
-            return True
-        return False
+        return PackageManager.has_package_permission(user, package, "all")

    @staticmethod
    def has_package_permission(user: "User", package: Union[str, UUID, "Package"], permission: str):
@ -470,7 +439,9 @@ class PackageManager(object):
            # remove package if user is owner and package is reviewed e.g. admin
            qs = qs.filter(reviewed=False)

-        return qs.distinct()
+        qs = qs.distinct()
+
+        return qs

    @staticmethod
    def get_all_writeable_packages(user):
@ -514,7 +485,9 @@ class PackageManager(object):

        qs = qs.filter(reviewed=False)

-        return qs.distinct()
+        qs = qs.distinct()
+
+        return qs

    @staticmethod
    def get_packages():
@ -716,6 +689,10 @@ class PackageManager(object):
                struc.description = structure["description"]
                struc.aliases = structure.get("aliases", [])
                struc.smiles = structure["smiles"]
+
+                if structure.get("molfile"):
+                    struc.molfile = structure["molfile"]
+
                struc.save()

                for scen in structure["scenarios"]: