add support for dynamic view of groups and rights

pboard/pboard/controllers/api.py

@@ -49,9 +49,23 @@ class PODPublicApiController(BaseController):
         loNewAccount.email_address = email
         loNewAccount.display_name  = email
         loNewAccount.password      = password
+
         loUserGroup = pld.PODStaticController.getGroup('user')
         loUserGroup.users.append(loNewAccount)
+
+        pm.DBSession.add(loNewAccount)
         pm.DBSession.flush()
+        pm.DBSession.refresh(loNewAccount)
+
+        loUserSpecificGroup = pld.PODStaticController.createGroup()
+
+        loUserSpecificGroup.group_id = 0-loNewAccount.user_id # group id of a given user is the opposite of the user id
+        loUserSpecificGroup.group_name = ''
+        loUserSpecificGroup.personnal_group = True
+        loUserSpecificGroup.users.append(loNewAccount)
+
+        pm.DBSession.flush()
+
         flash(_('Account successfully created: %s') % (email), 'info')
         redirect(lurl('/'))
 

pboard/pboard/controllers/root.py

@@ -147,7 +147,9 @@ class RootController(BaseController):
             root_node_list=loRootNodeList,
             current_node=loCurrentNode,
             node_status_list = loNodeStatusList,
-            keywords = highlight
+            keywords = highlight,
+            user_specific_groups = pld.PODStaticController.getUserSpecificGroups(),
+            real_groups = pld.PODStaticController.getRealGroups()
         )
 
     @expose('pboard.templates.search')

pboard/pboard/lib/auth.py

@@ -11,14 +11,16 @@ class can_read(Predicate):
         pass
 
     def evaluate(self, environ, credentials):
-        node_id = environ['webob.adhoc_attrs']['validation']['values']['node']
-        has_right = session.execute("""
-                select *
-                from pod_group_node pgn
-                join pod_user_group pug on pug.group_id = pgn.group_id
-                join pod_user pu on pug.user_id = pu.user_id
-                where rights > 0
-                and email_address = :mail
-                and node_id = :node""", {"mail":credentials["repoze.who.userid"], "node":node_id})
-        if has_right.rowcount == 0 :
-            self.unmet()
+        if 'node' in environ['webob.adhoc_attrs']['validation']['values']:
+            node_id = environ['webob.adhoc_attrs']['validation']['values']['node']
+            if node_id!=0:
+                has_right = session.execute("""
+                        select *
+                        from pod_group_node pgn
+                        join pod_user_group pug on pug.group_id = pgn.group_id
+                        join pod_user pu on pug.user_id = pu.user_id
+                        where rights > 0
+                        and email_address = :mail
+                        and node_id = :node""", {"mail":credentials["repoze.who.userid"], "node":node_id})
+                if has_right.rowcount == 0 :
+                    self.unmet()

pboard/pboard/lib/dbapi.py

@@ -41,6 +41,23 @@ class PODStaticController(object):
     loGroup = pbma.Group.by_group_name(psGroupName)
     return loGroup
 
+  @classmethod
+  def createGroup(cls):
+    loGroup = pbma.Group()
+    return loGroup
+
+  @classmethod
+  def getGroups(cls):
+    loGroups = pbma.Group.real_groups_first()
+    return loGroups
+
+  @classmethod
+  def getUserSpecificGroups(cls):
+    return DBSession.query(pbma.Group).filter(pbma.Group.personnal_group==True).all()
+
+  @classmethod
+  def getRealGroups(cls):
+    return DBSession.query(pbma.Group).filter(pbma.Group.personnal_group==False).all()
 
 class PODUserFilteredApiController(object):
   

pboard/pboard/model/auth.py

@@ -11,11 +11,12 @@ though.
 import os
 from datetime import datetime
 from hashlib import sha256
+
 __all__ = ['User', 'Group', 'Permission']
 
 from sqlalchemy import Table, ForeignKey, Column
 from sqlalchemy.types import Unicode, Integer, DateTime, Boolean
-from sqlalchemy.orm import relation, synonym
+from sqlalchemy.orm import relation, relationship, synonym
 
 from pboard.model import DeclarativeBase, metadata, DBSession
 
@@ -38,13 +39,25 @@ user_group_table = Table('pod_user_group', metadata,
 )
 
 
-class Group(DeclarativeBase):
-    """
-    Group definition
 
-    Only the ``group_name`` column is required.
 
-    """
+class Rights(DeclarativeBase):
+    READ_ACCESS = 1
+    WRITE_ACCESS = 2
+
+    __tablename__ = 'pod_group_node'
+
+    group_id = Column(Integer, ForeignKey('pod_group.group_id'), autoincrement=True, primary_key=True)
+    node_id = Column(Integer, ForeignKey('pod_nodes.node_id'), autoincrement=True, primary_key=True)
+    rights = Column(Integer)
+
+    def hasReadAccess(self):
+        return self.rights & Rights.READ_ACCESS
+
+    def hasWriteAccess(self):
+        return self.rights & Rights.WRITE_ACCESS
+
+class Group(DeclarativeBase):
 
     __tablename__ = 'pod_group'
 
@@ -55,6 +68,9 @@ class Group(DeclarativeBase):
     personnal_group = Column(Boolean)
     users = relation('User', secondary=user_group_table, backref='groups')
 
+    users = relation('User', secondary=user_group_table, backref='groups')
+    _lRights = relationship('Rights', remote_side=[Rights.group_id], backref='_oGroup')
+
     def __repr__(self):
         return '<Group: name=%s>' % repr(self.group_name)
 
@@ -66,6 +82,17 @@ class Group(DeclarativeBase):
         """Return the user object whose email address is ``email``."""
         return DBSession.query(cls).filter_by(group_name=group_name).first()
 
+    def getDisplayName(self) -> str:
+        if self.group_id<0:
+            return self.users[0].display_name
+
+        return self.display_name
+
+    @property
+    def rights(self):
+        return self._lRights
+
+
 class User(DeclarativeBase):
     """
     User definition.
@@ -154,14 +181,7 @@ class User(DeclarativeBase):
         hash.update((password + self.password[:64]).encode('utf-8'))
         return self.password[64:] == hash.hexdigest()
 
-class Rights(DeclarativeBase):
-    __tablename__ = 'pod_group_node'
-
-    group_id = Column(Integer, ForeignKey('pod_group.group_id'), autoincrement=True, primary_key=True)
-    node_id = Column(Integer, ForeignKey('pod_nodes.node_id'), autoincrement=True, primary_key=True)
-    rights = Column(Integer)
 
-    groups = relation('PBNode')
 
 class Permission(DeclarativeBase):
     """

pboard/pboard/model/data.py

@@ -21,40 +21,6 @@ import tg
 from pboard.model import DeclarativeBase, metadata, DBSession
 from pboard.model import auth as pma
 
-# This is the association table for the many-to-many relationship between
-# groups and permissions.
-"""pod_node_table = Table('pod_nodes', metadata,
-    Column('node_id', Integer, Sequence('pod_nodes__node_id__sequence'), primary_key=True),
-    Column('parent_id', Integer, ForeignKey('pod_nodes.node_id'), nullable=True, default=None),
-    Column('node_order', Integer, nullable=True, default=1),
-    Column('node_type',   Unicode(16), unique=False, nullable=False, default='data'),
-    Column('node_status', Unicode(16), unique=False, nullable=False, default='new'),
-
-    Column('created_at', DateTime, unique=False, nullable=False),
-    Column('updated_at', DateTime, unique=False, nullable=False),
-
-    Column('data_label',   Unicode(1024), unique=False, nullable=False, default=''),
-    Column('data_content', Text(), unique=False, nullable=False, default=''),
-    Column('data_datetime', DateTime, unique=False, nullable=False),
-    Column('data_reminder_datetime', DateTime, unique=False, nullable=True),
-    
-    Column('data_file_name', Unicode(255), unique=False, nullable=False, default=''),
-    Column('data_file_mime_type', Unicode(255), unique=False, nullable=False, default=''),
-    Column('data_file_content', LargeBinary(), unique=False, nullable=False, default=None),
-)
-"""
-"""
-- node_type
-
-- node_created_at
-- node_updated_at
-
-- data_label
-- data_content
-- data_source_url
-- data_status_id
-"""
-
 
 class PBNodeStatusItem(object):
   def __init__(self, psStatusId, psStatusLabel, psStatusFamily, psIconId, psCssClass): #, psBackgroundColor):
@@ -228,6 +194,7 @@ class PBNode(DeclarativeBase):
   _oParent = relationship('PBNode', remote_side=[node_id], backref='_lAllChildren')
   _oOwner = relationship('User', remote_side=[pma.User.user_id], backref='_lAllNodes')
 
+
   def getChildrenOfType(self, plNodeTypeList, poKeySortingMethod=None, pbDoReverseSorting=False):
     """return all children nodes of type 'data' or 'node' or 'folder'"""
     llChildren = []

pboard/pboard/templates/document-widgets-tabs.mak

@@ -45,32 +45,46 @@
           <th></th>
         </tr>
       </thead>
-      <tr>
-        <td>Recherche et Développement</td>
-        <td>
-          <span class="label label-success" title="${_('Read access')}">R</span>
-          <span class="label label-warning" title="${_('Write access')}">W</span>
-        </td>
-      </tr>
+      % for loCurrentGroup in real_groups:
+        <tr>
+          <td>${loCurrentGroup.getDisplayName()}</td>
+          <td>
+            % for loRight in loCurrentGroup.rights:
+              % if loRight.node_id==poNode.node_id:
+                % if loRight.hasReadAccess():
+                  <span class="label label-success">R</span>
+                % endif
+                % if loRight.hasWriteAccess():
+                  <span class="label label-warning">W</span>
+                % endif
+              % endif
+            % endfor
+          </td>
+        </tr>
+      % endfor
       <thead>
         <tr>
           <th><i class="fa fa-user"></i> ${_('Users')}</th>
           <th></th>
         </tr>
       </thead>
-      <tr>
-        <td>Damien Accorsi</td>
-        <td>
-          <span class="label label-success">R</span>
-        </td>
-      </tr>
-      <tr>
-        <td>Sylvain Ferot</td>
-        <td>
-          <span class="label label-success">R</span>
-          <span class="label label-warning">W</span>
-        </td>
-      </tr>
+      % for loCurrentGroup in user_specific_groups:
+        <tr>
+          <td>${loCurrentGroup.getDisplayName()}</td>
+          <td>
+            % for loRight in loCurrentGroup.rights:
+              % if loRight.node_id==poNode.node_id:
+                % if loRight.hasReadAccess():
+                  <span class="label label-success">R</span>
+                % endif
+                % if loRight.hasWriteAccess():
+                  <span class="label label-warning">W</span>
+                % endif
+              % endif
+            % endfor
+          </td>
+        </tr>
+      % endfor
     </table>
     
     % endif
@@ -160,26 +174,26 @@
     ##
     ## FIXME - SET A DYNAMIC SELECT LIST HERE
     ##
-              % for loCurrentUser in ((3, 'Research and Development'), (4, 'Sylvain Ferot'), (5, 'Damien Accorsi')):
-              <tr id='user-${loCurrentUser[0]}-rights-row'>
+              % for loCurrentGroup in user_specific_groups:
+              <tr id='user-${loCurrentGroup.group_id}-rights-row'>
                 <td>
                   <a
                     class="btn btn-mini"
-                    onclick="updateRights(${loCurrentUser[0]})"
+                    onclick="updateRights(${loCurrentGroup.group_id})"
                   >
                     <i class="fa fa-key"></i>
                   </a>
                 </td>
                 <td class='pod-highlightable-access-management-cell'>
-                  ${loCurrentUser[1]}
+                  ${loCurrentGroup.getDisplayName()}
                   <input
                     type="hidden"
-                    id="user-${loCurrentUser[0]}-value"
-                    name="user[${loCurrentUser[0]}]"
+                    id="user-${loCurrentGroup.group_id}-value"
+                    name="user[${loCurrentGroup.group_id}]"
                     value=""
                   />
                 </td>
-                <td id="user-${loCurrentUser[0]}-rights" class="pod-right-cell"></td>
+                <td id="user-${loCurrentGroup.group_id}-rights" class="pod-right-cell"></td>
               </tr>
               % endfor
             </table>
@@ -325,6 +339,7 @@
           >
             ${loFile.getTruncatedLabel(50)}
           </a>
+          ## FIXME SHOW IMAGE THUMBNAIL <img src="${tg.url('/api/get_file_content_thumbnail/%i'%loFile.node_id)}"/>
           <a
             class="pull-right"
             href="${tg.url('/api/get_file_content/%s'%(loFile.node_id))}"

pboard/pboard/templates/document-widgets-tabs.mak~

@@ -0,0 +1,514 @@
+<%inherit file="local:templates.master"/>
+<%namespace name="POD" file="pboard.templates.pod"/>
+<%namespace name="DOC" file="pboard.templates.document-widgets"/>
+
+<%def name="HistoryTabContent(poNode)">
+  <h4>History</h4>
+  <ul>
+  % for version in poNode.getHistory():
+  	<li><a href="${tg.url('/document/%i/%i'%(version.node_id, version.version_id))}">${version.created_at.strftime("%a %x %X")}</a></li>
+  % endfor
+  </ul>
+</%def>
+
+<%def name="AccessManagementTab(poNode)">
+  ######
+  ##
+  ## THIS WIDGET IS INTENDED TO BE USED ONE TIME ONLY IN A PAGE
+  ##
+  <h4>${_('Share options')}</h4> 
+  <p>
+    This document is
+    % if poNode.is_shared==False:
+      <span class="label label-info">
+        <i class="fa fa-user"></i>
+        ${_('private')}
+      </span>
+    % else:
+      <span class="label label-info">
+        <i class="fa fa-group"></i>
+        ${_('collaborative')}
+      </span>
+    % endif
+  </p>
+  <p>
+    % if poNode.is_shared==True or poNode.is_shared==False:
+      ${_('People working on it are:')}
+######
+##
+## FIXME - SHOW LIST OF GROUPS ALLOWED TO WORK ON THE DOCUMENT
+##
+    <table class="table table-striped table-hover table-condensed">
+      <thead>
+        <tr>
+          <th><i class="fa fa-group"></i> ${_('Groups')}</th>
+          <th></th>
+        </tr>
+      </thead>
+      % for loCurrentGroup in real_groups:
+        <tr>
+          <td>${loCurrentGroup.getDisplayName()}</td>
+          <td>
+            % for loRight in loCurrentGroup.rights:
+              % if loRight.node_id==poNode.node_id:
+                % if loRight.hasReadAccess():
+                  <span class="label label-success">R</span>
+                % endif
+                % if loRight.hasWriteAccess():
+                  <span class="label label-warning">W</span>
+                % endif
+              % endif
+            % endfor
+          </td>
+        </tr>
+      % endfor
+      <tr>
+        <td>Recherche et Développement</td>
+        <td>
+          <span class="label label-success" title="${_('Read access')}">R</span>
+          <span class="label label-warning" title="${_('Write access')}">W</span>
+        </td>
+      </tr>
+      <thead>
+        <tr>
+          <th><i class="fa fa-user"></i> ${_('Users')}</th>
+          <th></th>
+        </tr>
+      </thead>
+      % for loCurrentGroup in user_specific_groups:
+        <tr>
+          <td>${loCurrentGroup.getDisplayName()}</td>
+          <td>
+            % for loRight in loCurrentGroup.rights:
+              % if loRight.node_id==poNode.node_id:
+                % if loRight.hasReadAccess():
+                  <span class="label label-success">R</span>
+                % endif
+                % if loRight.hasWriteAccess():
+                  <span class="label label-warning">W</span>
+                % endif
+              % endif
+            % endfor
+          </td>
+        </tr>
+      % endfor
+    </table>
+    
+    % endif
+  <p>
+
+######
+##
+## 2014-05-06 - D.A. We do not share documents on internet yet.
+##
+##  <p>
+##    % if poNode.is_public==False:
+##      ${_('This document is not shared on internet')|n}
+##    % else:
+##      ${_('This document is <span class="label label-warning"><i class="fa fa-globe"></i><span>shared</span></span> on internet')|n}.
+##      ${_('The associated url is:')} <a href="FIXME">${poNode.public_url_key}</a>
+##    % endif
+##  </p>
+  <!-- Button to trigger modal -->
+  <a href="#edit-document-share-properties" role="button" class="btn btn-success" data-toggle="modal">
+    <i class="fa fa-edit"></i>
+    ${_('Edit share options')}
+  </a>
+     
+  <!-- Modal -->
+  <div
+    id="edit-document-share-properties"
+    class="modal hide"
+    tabindex="-1"
+    role="dialog"
+    aria-labelledby="myModalLabel"
+    aria-hidden="true">
+    
+    <div class="modal-header">
+      <button type="button" class="close" data-dismiss="modal" aria-hidden="true">×</button>
+      <h3 id="myModalLabel">Document sharing options</h3>
+    </div>
+    <div class="modal-body">
+
+      <form id='document-share-form' method="GET" action="${tg.url('/api/set_access_management?node_id=%d'%poNode.node_id)}">
+        <fieldset>
+          <label class="checkbox">
+            <input name="is_shared" type="checkbox" id="document-share-selector" ${('', 'checked')[poNode.is_shared]}/>
+            ${_('Share document with collaborators.')} <i class="fa fa-group"></i>
+          </label>
+          <div id="document-share-people-selector">
+            <p>
+              ${_('Select read and write access for each group or people...')}</p>
+            <script>
+            function updateRights(psUserId) {
+              var ACCESS_NONE = '';
+              var ACCESS_READ = 'R';
+              var ACCESS_WRITE = 'RW';
+              
+              var nodeIdForSelectedUser = 'user-'+psUserId+'-value';
+              var widget = $('#'+nodeIdForSelectedUser);
+              var oldValue = widget.val();
+              var newValue = '';
+              if(oldValue==ACCESS_NONE) {
+                newValue = ACCESS_READ;
+                newHtml = '<span class="label label-success">R</span>';
+              } else if(oldValue==ACCESS_READ) {
+                newValue = ACCESS_WRITE;
+                newHtml = '<span class="label label-success">R</span> <span class="label label-warning">W</span>';
+              } else if (oldValue==ACCESS_WRITE) {
+                newValue = ACCESS_NONE;
+                newHtml = '';
+              } else {
+                newValue = ACCESS_READ;
+                newHtml = '<span class="label label-success">R</span>';
+              }
+              
+              widget.val(newValue);
+              visibleid = 'user-'+psUserId+'-rights';
+              $("#"+visibleid).html(newHtml);
+            }
+            </script>
+            
+            <table class="table table-striped table-hover table-condensed">
+              <thead>
+                <tr>
+                  <th></th>
+                  <th>${_('Group')}</th>
+                  <th>${_('Access')}</th>
+                </tr>
+              </thead>
+    ######
+    ##
+    ## FIXME - SET A DYNAMIC SELECT LIST HERE
+    ##
+              % for loCurrentGroup in user_specific_groups:
+              <tr id='user-${loCurrentGroup.group_id}-rights-row'>
+                <td>
+                  <a
+                    class="btn btn-mini"
+                    onclick="updateRights(${loCurrentGroup.group_id})"
+                  >
+                    <i class="fa fa-key"></i>
+                  </a>
+                </td>
+                <td class='pod-highlightable-access-management-cell'>
+                  ${loCurrentGroup.getDisplayName()}
+                  <input
+                    type="hidden"
+                    id="user-${loCurrentGroup.group_id}-value"
+                    name="user[${loCurrentGroup.group_id}]"
+                    value=""
+                  />
+                </td>
+                <td id="user-${loCurrentGroup.group_id}-rights" class="pod-right-cell"></td>
+              </tr>
+              % endfor
+            </table>
+          </div>
+        </fieldset>
+######
+##
+## 2014-05-06 - D.A. The documents are not yet sharable through internet
+##
+##        <fieldset>
+##          <label class="checkbox">
+##            <input name="is_public" type="checkbox" id="document-public-selector" ${('', 'checked')[poNode.is_public]}/>
+##            ${_('Internet shared document')}
+##            <i class="fa fa-globe"></i>
+##          </label>
+##          <label id="document-public-key-selector">
+##            ${_('Key')}
+##            <div class="input-append">
+##              <input name="url_public_key" id="document-public-key" type="text">
+##              <span id="document-public-key-refresh-button" class="add-on btn" title="${_('Regenerate key')}">
+##                <i class="fa fa-refresh"></i>
+##              </span>
+##            </div>
+##            <p><a id='document-public-key-url' href="">http://share.pod.com/document/azefnzeioguneriugnreiugnre</a></p>
+##          </label>
+
+        </fieldset>
+####
+## Button replaced by modal dialog button
+##        <button type="submit" class="btn btn-success">
+##          <i class="fa fa-check"></i>
+##          ${_('Save')}
+##        </button>
+      </form>
+    </div>
+    <div class="modal-footer">
+    <button class="btn" data-dismiss="modal" aria-hidden="true">
+      <i class="fa fa-ban"></i> ${_('Cancel')}
+    </button>
+    <button class="btn btn-success" id="document-share-form-submit-button">
+      <i class="fa fa-check"></i> ${_('Save changes')}
+    </button>
+    </div>
+    <script>
+##
+## 2014-05-06 - D.A. - Documents are not yet sharable through internet
+##
+##        function refreshDocumentPublicKey(psNewPublicKey) {
+##          var lsNewUrl = 'http://share.pod.com/document/'+psNewPublicKey;
+##          $('#document-public-key').val(psNewPublicKey);
+##          $('#document-public-key-url').attr('href', lsNewUrl);
+##          $('#document-public-key-url').text(lsNewUrl);
+##        }
+      
+      function toggleDocumentSharePeopleSelector(pbShowIt) {
+        if (pbShowIt) {
+          $('#document-share-people-selector').show();
+          // $('#document-share-people-selector input').removeAttr("disabled");
+        } else {
+          $('#document-share-people-selector').hide();
+          // $('#document-share-people-selector input').prop('disabled', 'disabled');
+        }
+      }
+
+##
+## 2014-05-06 - D.A. - Documents are not yet sharable through internet
+##
+##        function toggleDocumentPublicKeyGenerator(pbShowIt) {
+##          if (pbShowIt) {
+##            $('#document-public-key-selector input').removeAttr("disabled");
+##            $('#document-public-key-refresh-button').removeProp('disabled');
+##            $('#document-public-key-refresh-button').removeClass('btn-disabled');
+##            $('#document-public-key-selector a').show();
+##            $('#document-public-key-refresh-button').on("click").click(function () {
+##              refreshDocumentPublicKey(generateStringId()); // New random 32-char id
+##            });
+##            if($('#document-public-key-selector input').val()=='') {
+##              refreshDocumentPublicKey(generateStringId());
+##            }
+##          } else {
+##            $('#document-public-key-refresh-button').prop('disabled', true);
+##            $('#document-public-key-refresh-button').addClass('btn-disabled');
+##            $('#document-public-key-selector input').prop('disabled', 'disabled');
+##            $('#document-public-key-refresh-button').off("click");
+##            $('#document-public-key-selector a').hide();
+##          }
+##        }
+##
+##
+##
+
+      // Callbacks setup
+      $('#document-share-selector').change(function () {
+        var checkedValue = $('#document-share-selector').prop("checked");
+        toggleDocumentSharePeopleSelector(checkedValue);
+      });
+
+##        $('#document-public-selector').change(function () {
+##          var checkedValue = $('#document-public-selector').prop("checked");
+##          toggleDocumentPublicKeyGenerator(checkedValue);
+##        });
+
+      // Submit access-management modal dialog form
+      $('#document-share-form-submit-button').click(function(){
+        $('#document-share-form')[0].submit();
+      });
+
+      // Initial setup
+      // Activate or disactivate users selector according
+      // to current state of the is_shared property
+      //
+      // FIXME - 2014-05-06 - This is not working (should be done at document.ready time)
+      // note: putting this in a document.ready callback does not work.
+      //
+      $('#document-share-form')[0].reset();
+      toggleDocumentSharePeopleSelector($('#document-share-selector').prop("checked"));
+##        toggleDocumentPublicKeyGenerator($('#document-public-selector').prop("checked"));  
+##        
+##        refreshDocumentPublicKey($('#document-public-key').val()); // First init
+
+    </script>
+  </div>
+</%def>
+
+<%def name="FileTabContent(poNode)">
+  <h4>${_('Attachments')}</h4>
+  
+  % if len(poNode.getFiles())<=0:
+    <p class="pod-grey">${_("There is currently no attachment.")}<br/></p>
+    <p>${POD.OpenModalButton(h.ID.AddFileModalForm(poNode), _(' Attach first file'))}</p>
+  % else:
+    <p>${POD.OpenModalButton(h.ID.AddFileModalForm(poNode), _(' Attach a file'))}</p>
+  % endif
+
+  <div>
+    % if len(poNode.getFiles())>0:
+      % for loFile in poNode.getFiles():
+        <p style="list-style-type:none; margin-bottom: 0.5em;">
+          <i class="fa fa-paperclip"></i>
+          <a
+            href="${tg.url('/document/%i'%loFile.node_id)}"
+            title="${_('View the attachment')}: ${loFile.getTruncatedLabel(-1)}"
+          >
+            ${loFile.getTruncatedLabel(50)}
+          </a>
+          ## FIXME SHOW IMAGE THUMBNAIL <img src="${tg.url('/api/get_file_content_thumbnail/%i'%loFile.node_id)}"/>
+          <a
+            class="pull-right"
+            href="${tg.url('/api/get_file_content/%s'%(loFile.node_id))}"
+            title="${_('View the attachment')}"
+          >
+            <i class="fa fa-download"></i>
+          </a>
+        </p>
+      % endfor
+    % endif
+  </div>
+</%def>
+
+<%def name="SubdocumentContent(poNode)">
+  <h4>${_('Sub-documents')}</h4>
+  
+  % if len(poNode.getChildren())<=0:
+    <p class="pod-grey">${_("There is currently no child documents.")}</p>
+  % endif
+  <p>${POD.OpenModalButton(h.ID.AddDocumentModalForm(poNode), _('Add a document'))}</p>
+
+  % if len(poNode.getChildren())>0:
+    <div>
+      % for subnode in poNode.getChildren():
+        <p style="list-style-type:none;">
+          <i class="fa-fw ${subnode.getIconClass()}"></i>
+            <a href="${tg.url('/document/%i'%subnode.node_id)}">
+              ${subnode.data_label}
+            </a>
+        </p>
+      % endfor
+    </div>
+  % endif
+</%def>
+
+<%def name="EventTabContent(poNode)">
+  <h4>${_('Calendar')}</h4>
+  
+  % if len(poNode.getEvents())<=0:
+    <p class="pod-grey">${_("The calendar is empty.")}<br/></p>
+    <p>${POD.OpenModalButton(h.ID.AddEventModalForm(poNode), _(' Add first event'))}</p>
+  % else:
+    <p>${POD.OpenModalButton(h.ID.AddEventModalForm(poNode), _(' Add an event'))}</p>
+  % endif
+
+  % if len(poNode.getEvents())>0:
+    <table class="table table-striped table-hover table-condensed">
+      <thead>
+        <tr>
+          <th>Date</th>
+          <th>Time</th>
+          <th>
+            Event
+          </th>
+          <th>
+            <a href="" title="Add an event"><i class="icon-g-plus"></i></a>
+          </th>
+        </tr>
+      </thead>
+      % for event in poNode.getEvents():
+        <tr class="item-with-data-popoverable" data-content="${event.data_content}" rel="popover" data-placement="left" data-trigger="hover">
+          <td>${event.getFormattedDate(event.data_datetime)}</td>
+          <td>${event.getFormattedTime(event.data_datetime)}</td>
+          <td>${event.data_label}</td>
+        </tr>
+  ## FIXME                    <script>
+  ##                      $('.item-with-data-popoverable').popover({ html: true});
+  ##                    </script>
+
+      % endfor
+    </table>
+  % endif
+</%def>
+
+<%def name="ContactTabContent(poNode)">
+  <h4>${_('Address book')}</h4> 
+  % if len(poNode.getContacts())<=0:
+    <p class="pod-grey">${_("The address book is empty.")}<br/></p>
+    <p>${POD.OpenModalButton(h.ID.AddContactModalForm(poNode), _('Add first contact'))}</p>
+  % else:
+    <p>${POD.OpenModalButton(h.ID.AddContactModalForm(poNode), _('Add a contact'))}</p>
+  % endif
+
+  <!-- LIST OF CONTACT NODES -->
+  % for contact in poNode.getContacts():
+    <div class="well">
+      <legend class="text-info">
+        ${contact.data_label}
+        ## TODO - 2013-11-20 - Use the right form in order to update meta-data
+        <a class="pull-right" href="${tg.url('/document/%i'%contact.node_id)}"><i class="fa fa-edit"></i></a>
+      </legend>
+      
+      <div>
+        ## FIXME - D.A. - 2013-11-15 - Implement localisation stuff <a style='float: right;' href="" title='${_('Search on google maps')}'><i class='icon-g-google-maps'></i></a>
+        ${contact.data_content|n}
+      </div>
+    </div>
+  % endfor
+</%def>
+
+<%def name="CommentTabContent(poNode)">
+  <h4>${_('Comment thread')}</h4>
+  
+  % if len(poNode.getComments())<=0:
+    <p class="pod-grey">${_("The comment thread is empty.")}<br/></p>
+  % endif
+
+  % if len(poNode.getComments())>0:
+    % if len(poNode.getComments())>5:
+      ##
+      ## We show a "direct down" button in case the page is too long
+      ##
+      <p>${POD.OpenLinkButton(h.ID.AddCommentInlineForm(), _('Add a comment'))}</p>
+    % endif
+    <div>
+      % for comment in poNode.getComments():
+        <p>
+          <a href="${tg.url('/api/toggle_share_status', dict(node_id=comment.node_id))}">
+            % if comment.is_shared:
+              <span class="label label-warning" title="${_('Shared comment. Click to make private.')}">${h.ICON.Shared|n}</span>
+            % else:
+              <span class="label label-info" title="${_('Private comment. Click to share.')}">${h.ICON.Private|n}</span>
+            % endif
+          </a>
+          <strong>${comment._oOwner.display_name}</strong>
+          <i class="pull-right">
+            The ${comment.getFormattedDate(comment.updated_at)} 
+            at ${comment.getFormattedTime(comment.updated_at)}
+          </i>
+          <br/>
+          ${comment.data_content|n}
+          <hr style="border-top: 1px dotted #ccc; margin: 0;"/>
+        </p>
+      % endfor
+    </div>
+  % endif
+
+  <form class="form" id="${h.ID.AddCommentInlineForm()}" action="${tg.url('/api/create_comment')}" method="POST">
+    <input type="hidden" name='parent_id' value='${poNode.node_id}'/>
+    <input type="hidden" name='data_label' value=""/>
+    <input type="hidden" id="add_comment_data_content_textarea" name='data_content' />
+    <label>
+      ${_('Write your comment below:')}
+      ${POD.RichTextEditor('add_comment_data_content_textarea_wysiwyg', '', 'boldanditalic')}
+    </label>
+    <label>
+      <input type="checkbox" name='is_shared'/> ${_('Share this comment')}
+    </label>
+    <span class="pull-right">
+      % if len(poNode.getComments())<=0:
+        ${POD.SaveButton('current-document-add-comment-save-button', True, _('Add first comment'))}
+      % else:
+        ${POD.SaveButton('current-document-add-comment-save-button', True, _('Comment'))}
+      % endif
+    </span>
+  </form>
+  <script>
+      $('#current-document-add-comment-save-button').on('click', function(e){
+      e.preventDefault(); // We don't want this to act as a link so cancel the link action
+      $('#add_comment_data_content_textarea_wysiwyg').cleanHtml();
+      $('#add_comment_data_content_textarea').val($('#add_comment_data_content_textarea_wysiwyg').html());
+      $('#current-document-add-comment-form').submit();
+    });
+  </script>
+</%def>