from django.http.response import HttpResponseRedirect, HttpResponse, HttpResponseForbidden
from django.shortcuts import get_object_or_404, render
from django.utils import timezone
+from django.utils.cache import patch_cache_control
+from django.views.decorators.cache import never_cache
from django.views.decorators.http import require_POST
+from unidecode import unidecode
from stage2.forms import AttachmentForm, MarkForm
from stage2.models import Participant, Assignment, Answer, Attachment, Mark
return assignments
+@never_cache
def participant_view(request, participant_id, key):
participant = get_object_or_404(Participant, id=participant_id)
if not participant.check(key):
raise Http404
- return render(request, 'stage2/participant.html', {
+ response = render(request, 'stage2/participant.html', {
'participant': participant,
'assignments': all_assignments(participant)})
+ # not needed in Django 1.8
+ patch_cache_control(response, no_cache=True, no_store=True, must_revalidate=True)
+ return response
@require_POST
def attachment_download(attachment):
response = HttpResponse(content_type='application/force-download')
response.write(attachment.file.read())
- response['Content-Disposition'] = 'attachment; filename="%s"' % attachment.filename()
+ # workaround to this: https://code.djangoproject.com/ticket/20889
+ response['Content-Disposition'] = 'attachment; filename="%s"' % unidecode(attachment.filename().replace('\n', ' '))
response['Content-Length'] = response.tell()
return response
def assignment_list(request):
assignments = request.user.stage2_assignments.all()
if not assignments:
- return HttpResponseForbidden()
+ return HttpResponseForbidden('Not allowed')
for assignment in assignments:
assignment.marked_count = Mark.objects.filter(expert=request.user, answer__assignment=assignment).count()
assignment.to_mark_count = assignment.available_answers(request.user).count()
def answer_list(request, assignment_id):
assignment = get_object_or_404(Assignment, id=assignment_id)
if request.user not in assignment.experts.all():
- return HttpResponseForbidden()
+ return HttpResponseForbidden('Not allowed')
return render(request, 'stage2/answer_list.html',
{'answers': available_answers(assignment, request.user), 'assignment': assignment})
def marked_answer_list(request, assignment_id):
assignment = get_object_or_404(Assignment, id=assignment_id)
if request.user not in assignment.experts.all():
- return HttpResponseForbidden()
+ return HttpResponseForbidden('Not allowed')
return render(request, 'stage2/answer_list.html', {
'answers': available_answers(assignment, request.user, marked=True),
'assignment': assignment,
def mark_answer(request, answer_id):
answer = get_object_or_404(Answer, id=answer_id)
if request.user not in answer.assignment.experts.all():
- return HttpResponseForbidden()
+ return HttpResponseForbidden('Not allowed')
if answer.assignment.is_active():
- return HttpResponseForbidden()
+ return HttpResponseForbidden('Not allowed')
mark, created = Mark.objects.get_or_create(answer=answer, expert=request.user, defaults={'points': 0})
form = MarkForm(data=request.POST, answer=answer, instance=mark, prefix='ans%s' % answer.id)
if form.is_valid():
fnp / edumed.git / blobdiff