define Self-Service as editting your own record.

This has the side-effect of removing the realm from Loggin in as. This can be changed by using user_name instead of display_name in master.kid.
2025-02-25 18:55:28 -06:00 · 2007-11-02 17:41:24 -04:00
parent 9d24003528
commit 010fb65bfd
3 changed files with 14 additions and 4 deletions
--- a/ipa-server/ipa-gui/ipagui/proxyprovider.py
+++ b/ipa-server/ipa-gui/ipagui/proxyprovider.py
@@ -12,7 +12,8 @@ class IPA_User(object):

    def __init__(self, user_name):
        self.user_name = user_name
-        self.display_name = user_name
+        (principal, realm) = user_name.split('@')
+        self.display_name = principal
        self.permissions = None
        self.groups = None
        return
--- a/ipa-server/ipa-gui/ipagui/subcontrollers/user.py
+++ b/ipa-server/ipa-gui/ipagui/subcontrollers/user.py
@@ -241,7 +241,7 @@ class UserController(IPAController):

    @expose("ipagui.templates.useredit")
    @identity.require(identity.not_anonymous())
-    def edit(self, uid, tg_errors=None):
+    def edit(self, uid=None, principal=None, tg_errors=None):
        """Displays the edit user form"""
        if tg_errors:
            turbogears.flash("There were validation errors.<br/>" +
@@ -250,7 +250,14 @@ class UserController(IPAController):
        client = self.get_ipaclient()

        try:
-            user = client.get_user_by_uid(uid, user_fields)
+            if uid is not None:
+                user = client.get_user_by_uid(uid, user_fields)
+            elif principal is not None:
+                principal = principal + "@" + ipa.config.config.default_realm
+                user = client.get_user_by_principal(principal, user_fields)
+            else:
+                turbogears.flash("User edit failed: No uid or principal provided")
+                raise turbogears.redirect('/')
            user_dict = user.toDict()
            # Edit shouldn't fill in the password field.
            if user_dict.has_key('userpassword'):
@@ -291,6 +298,8 @@ class UserController(IPAController):
            return dict(form=user_edit_form, user=user_dict,
                    user_groups=user_groups_dicts)
        except ipaerror.IPAError, e:
+            if uid is None:
+                uid = principal
            turbogears.flash("User edit failed: " + str(e))
            raise turbogears.redirect('/user/show', uid=uid)

--- a/ipa-server/ipa-gui/ipagui/templates/master.kid
+++ b/ipa-server/ipa-gui/ipagui/templates/master.kid
@@ -79,7 +79,7 @@
        </ul>
        <ul>
        <li><a href="${tg.url('/')}">Manage Policy</a></li>
-        <li><a href="${tg.url('/')}">Self Service</a></li>
+        <li><a href="${tg.url('/user/edit/', principal=tg.identity.user.display_name)}">Self Service</a></li>
        </ul>
        <ul>
        <li><a href="${tg.url('/delegate/list')}">Delegations</a></li>