[WIP] 9.0 website_base_multi_image #252
Conversation
|
This PR will be merged with website_multi_image when it has been ported to 9.0 |
|
Hi @sergio-teruel , travis fails |
|
|
||
| .. image:: https://odoo-community.org/website/image/ir.attachment/5784_f2813bd/datas | ||
| :alt: Try me on Runbot | ||
| :target: https://runbot.odoo-community.org/runbot/{id} |
| ======================== | ||
|
|
||
| This module extends the functionality of 'base_multi_image' module | ||
| to show winery data in website |
| Bug Tracker | ||
| =========== | ||
|
|
||
| Bugs are tracked on `GitHub Issues <https://github.com/OCA/xxx/issues>`_. |
| Bugs are tracked on `GitHub Issues <https://github.com/OCA/xxx/issues>`_. | ||
| In case of trouble, please check there if your issue has already been reported. | ||
| If you spotted it first, help us smashing it by providing a detailed and welcomed feedback | ||
| `here <https://github.com/OCA/website/issues/new?body=module:%mypopwine_website_portal_purchase_winery%0Aversion:%209.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_. |
| mission is to support the collaborative development of Odoo features and | ||
| promote its widespread use. | ||
|
|
||
| To contribute to this module, please visit http://odoo-community.org. |
|
|
||
| <t t-name="website_base_multi_image.image_preview"> | ||
| <img id="image_preview" | ||
| class="img img-responsive product_detail_img" |
There was a problem hiding this comment.
product? is this not a base module?
|
|
||
| <t t-name="website_base_multi_image.image_preview_thumb"> | ||
| <div class="col-md-3 mt8 mb8"> | ||
| <img class="img img-responsive winery-image-thumb" |
| </div> | ||
| </t> | ||
|
|
||
| </templates> |
| <template id="assets_frontend" inherit_id="website.assets_frontend"> | ||
| <xpath expr="."> | ||
| <link rel="stylesheet" | ||
| href="/website_base_multi_image/static/src/css/theme.css"/> |
There was a problem hiding this comment.
This is not a theme, could you change the file name?
| <odoo> | ||
|
|
||
| <template id="base_multi_image_fields"> | ||
| <t t-set="owner_model" t-value="owner_model or 'product.template'"/> |
There was a problem hiding this comment.
This is base module, so add no defaults please. Let it die if variable is missing.
|
|
||
| <template id="image_main"> | ||
| <label>Image</label> | ||
| <div class="carousel-inner container" style="padding: 0;"> |
| width: 130px; | ||
| float: left; | ||
| margin-top: 5px; | ||
| }*/ |
There was a problem hiding this comment.
Do not leave useless code around please.
| result = {} | ||
| try: | ||
| secondary_images.write({'sequence': 20}) | ||
| except Exception, e: |
| ]) | ||
| result = {} | ||
| try: | ||
| secondary_images.write({'sequence': 20}) |
There was a problem hiding this comment.
I think you can drop this controller and use /web/dataset/resequence instead.
| #------------------------------------------------------ | ||
| # remove images | ||
| #------------------------------------------------------ | ||
| @http.route('/website/image/remove', type='json', auth='user') |
There was a problem hiding this comment.
This one controller could be replaced by a JS call to unlink too. Not so hard to do, and I believe it's good to get used to use built-in standard RPC methods instead of creating a controller for everything.
sergio-teruel
force-pushed
the
9.0-PR-website_base_multi_image
branch
from
e3a54fd
to
233dcf2
Compare
| @return: List of images to add | ||
| """ | ||
| images_to_add = [] | ||
| for key in post.keys(): |
There was a problem hiding this comment.
Why not for key, image in post.iteritems(). IMO it would make the list check and new_image assignment block much cleaner.
| """ | ||
| images_to_add = [] | ||
| for key in post.keys(): | ||
| if 'new_image_' in key: |
There was a problem hiding this comment.
key.startswith('new_image_') would better match with the documented/intended logic
| 'file_db_store': base64.encodestring(new_image.read()), | ||
| 'owner_model': model_name, | ||
| 'name': new_image.filename, | ||
| 'extension': 'jpg', |
There was a problem hiding this comment.
Sorry, but base_multi_image.image does not have mimetype field.
There was a problem hiding this comment.
I think @lasley means that you should guess the mimetype from the incoming bytes and then choose the right extension instead of hardcoding jpg, right?
| } | ||
|
|
||
| #base_multi_image .carousel-indicators .active { | ||
| /*display: none;*/ |
There was a problem hiding this comment.
Please remove this (see @yajo useless code comment)
| var _t = core._t; | ||
| var $ = require("$"); | ||
|
|
||
| animation.registry.website_base_multi_image = |
There was a problem hiding this comment.
IMO this is really hard to read with 3 namespaces in the same tab level
| }); | ||
| }, | ||
| image_preview: function (event) { | ||
| var image = event.target.files[0]; |
| reader.readAsDataURL(image); | ||
| }, | ||
| reader_load: function (event) { | ||
| var filename = event.target.fileName; |
| e.stopPropagation(); | ||
| var self = this; | ||
| self.notify_clear(); | ||
| var $a = $(e.target); |
| image_make_main: function(e){ | ||
| var self = this; | ||
| self.notify_clear(); | ||
| var $a = $(e.target); |
| </div> | ||
| </t> | ||
|
|
||
| </templates> |
|
Thanks for the submission @sergio-teruel - comments inline |
| @@ -0,0 +1,3 @@ | |||
| id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink | |||
| access_portal_supplier_base_multi_image,access_portal_supplier_base_multi_image,base_multi_image.model_base_multi_image_image,base.group_portal,1,1,1,0 | |||
There was a problem hiding this comment.
So any portal users can modify any image? 👎
write/create/unlink perms must be ir.rule-constrained, and I guess that should be made per submodule, so delete this please.
…eate and edit ACL's
| @@ -1,3 +1,3 @@ | |||
| id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink | |||
| access_portal_supplier_base_multi_image,access_portal_supplier_base_multi_image,base_multi_image.model_base_multi_image_image,base.group_portal,1,1,1,0 | |||
| access_portal_base_multi_image,access_portal_base_multi_image,base_multi_image.model_base_multi_image_image,base.group_portal,1,0,0,0 | |||
| access_public_base_multi_image,access_public_base_multi_image,base_multi_image.model_base_multi_image_image,base.group_public,1,0,0,0 | |||
There was a problem hiding this comment.
You could use a single rule for this, with no group.
BTW keep in mind you are giving access to every multi image in the database. No matter if it belongs to a partner, product, human resource, or whatever...
Given this is a website_base module, I think it would be a good idea to add a "published" button to the model, and a ir.rule that constrains public access to published images.
|
Hi all, @sergio-teruel what's pending to this module? |
|
@rafaelbn is pending to do a zoom controller. |
|
Hi @sergio-teruel , are the changes requested by @lasley and @yajo done? |
| 'file_db_store': base64.encodestring(new_image.read()), | ||
| 'owner_model': model_name, | ||
| 'name': new_image.filename, | ||
| 'extension': 'jpg', |
There was a problem hiding this comment.
I think @lasley means that you should guess the mimetype from the incoming bytes and then choose the right extension instead of hardcoding jpg, right?
|
|
||
| To use this module, you need to: | ||
|
|
||
| #. Go to ... |
| @@ -0,0 +1,29 @@ | |||
| <?xml version="1.0" encoding="utf-8"?> | |||
| <odoo> | |||
| <data noupdate="0"> | |||
| @api.model | ||
| def get_images_to_add(self, post, model_name): | ||
| """ | ||
| @param post: dict with images in format 'new_image_xxx' |
There was a problem hiding this comment.
'new_image_xxx' is not a dict format nor an image format, I don't understand this doc line. Besides, add a general description for what the method does in its 1st line please.
| else: | ||
| new_image = image | ||
| images_to_add.append((0, 0, { | ||
| 'storage': 'db', |
There was a problem hiding this comment.
You could get this from context (self.env.context.get("default_storage", "db")) or from a method argument. Not a blocker.
| @@ -0,0 +1,3 @@ | |||
| id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink | |||
| access_portal_base_multi_image,access_portal_base_multi_image,base_multi_image.model_base_multi_image_image,base.group_portal,1,0,0,0 | |||
| access_public_base_multi_image,access_public_base_multi_image,base_multi_image.model_base_multi_image_image,base.group_public,1,0,0,0 | |||
There was a problem hiding this comment.
You are still giving access to public and portal users to every image in the database.
As this is right now, this is a 👎 blocking security issue. I think the best fix you could apply is something similar to what I do here for base_custom_info: giving access to images by checking access to their owners.
That IMP should go direclty into base_multi_image, BTW.
| height: 0px; | ||
| width: 110px; | ||
| margin-left: 5px; | ||
| } |
There was a problem hiding this comment.
All this line would become more readable/reusable if written into less/sass. Not blocking 😉
| </div> | ||
| </t> | ||
|
|
||
| </templates> |
| <div class="carousel-inner container" style="padding: 0;"> | ||
| <t t-foreach="srcs" t-as="src"> | ||
| <div t-attf-class="item #{src_index == index and 'active' or ''}" | ||
| t-attf-data-slide-to="#{src_index}"> |
There was a problem hiding this comment.
I'd use t-att-data-slide-to="src_index" instead.
|
Hi @sergio-teruel about #252 (comment) zoom controller, I think better to add that issue to known issues and merger this as is. Still pending yajo's comments but IMHO this is OK |
|
@yajo please could you review again ? If any change needed it could be very nice is you make it directly. Thanks for help. |
|
@sergio-teruel please attend @yajo's comments. |
|
Closing as the project is no longer active and v10 includes native support for this. |
This module extends the functionality of 'base_multi_image' module to show image data in website
Port from v8
@Tecnativa