Allow organizer-level exports with separate permission and no event selection

2026-05-06 15:24:02 +00:00 · 2022-10-05 09:56:43 +02:00
parent 74e14285ee
commit 60cdfe4029
7 changed files with 96 additions and 21 deletions
--- a/src/pretix/base/exporter.py
+++ b/src/pretix/base/exporter.py
@@ -51,7 +51,7 @@ from pretix.helpers.safe_openpyxl import (  # NOQA: backwards compatibility for
    SafeWorkbook, remove_invalid_excel_chars as excel_safe,
 )

-__ = excel_safe  # just so the compatbility import above is "used" and doesn't get removed by linter
+__ = excel_safe  # just so the compatibility import above is "used" and doesn't get removed by linter


 class BaseExporter:
@@ -80,7 +80,7 @@ class BaseExporter:
    def verbose_name(self) -> str:
        """
        A human-readable name for this exporter. This should be short but
-        self-explaining. Good examples include 'JSON' or 'Microsoft Excel'.
+        self-explaining. Good examples include 'Orders as JSON' or 'Orders as Microsoft Excel'.
        """
        raise NotImplementedError()  # NOQA

@@ -137,6 +137,16 @@ class BaseExporter:
        raise NotImplementedError()  # NOQA


+class OrganizerLevelExportMixin:
+    @property
+    def organizer_required_permission(self) -> str:
+        """
+        The permission level required to use this exporter. Only useful for organizer-level exports,
+        not for event-level exports.
+        """
+        return 'can_view_orders'
+
+
 class ListExporter(BaseExporter):
    ProgressSetTotal = namedtuple('ProgressSetTotal', 'total')

--- a/src/pretix/base/exporters/orderlist.py
+++ b/src/pretix/base/exporters/orderlist.py
@@ -60,7 +60,9 @@ from pretix.base.settings import PERSON_NAME_SCHEMES
 from ...control.forms.filter import get_all_payment_providers
 from ...helpers import GroupConcat
 from ...helpers.iter import chunked_iterable
-from ..exporter import ListExporter, MultiSheetListExporter
+from ..exporter import (
+    ListExporter, MultiSheetListExporter, OrganizerLevelExportMixin,
+)
 from ..signals import (
    register_data_exporters, register_multievent_data_exporters,
 )
@@ -884,9 +886,10 @@ class QuotaListExporter(ListExporter):
        return '{}_quotas'.format(self.event.slug)


-class GiftcardTransactionListExporter(ListExporter):
+class GiftcardTransactionListExporter(OrganizerLevelExportMixin, ListExporter):
    identifier = 'giftcardtransactionlist'
    verbose_name = gettext_lazy('Gift card transactions')
+    organizer_required_permission = 'can_manage_gift_cards'

    @property
    def additional_form_fields(self):
@@ -998,9 +1001,10 @@ class GiftcardRedemptionListExporter(ListExporter):
            return '{}_giftcardredemptions'.format(self.event.slug)


-class GiftcardListExporter(ListExporter):
+class GiftcardListExporter(OrganizerLevelExportMixin, ListExporter):
    identifier = 'giftcardlist'
    verbose_name = gettext_lazy('Gift cards')
+    organizer_required_permission = 'can_manage_gift_cards'

    @property
    def additional_form_fields(self):
--- a/src/pretix/base/services/export.py
+++ b/src/pretix/base/services/export.py
@@ -26,6 +26,7 @@ from django.core.files.base import ContentFile
 from django.utils.timezone import override
 from django.utils.translation import gettext

+from pretix.base.exporter import OrganizerLevelExportMixin
 from pretix.base.i18n import LazyLocaleException, language
 from pretix.base.models import (
    CachedFile, Device, Event, Organizer, TeamAPIToken, User, cachedfile_name,
@@ -119,6 +120,17 @@ def multiexport(self, organizer: Organizer, user: User, device: int, token: int,
                continue
            ex = response(events, organizer, set_progress)
            if ex.identifier == provider:
+                if (
+                    isinstance(ex, OrganizerLevelExportMixin) and
+                    not staff_session and
+                    not (device or token or user).has_organizer_permission(self.request.organizer,
+                                                                           ex.organizer_required_permission,
+                                                                           self.request)
+                ):
+                    raise ExportError(
+                        gettext('You do not have sufficient permission to perform this export.')
+                    )
+
                d = ex.render(form_data)
                if d is None:
                    raise ExportError(