Use normal material management permissions for uploading bluesheets. Fixes ietf-tools#2975. Commit ready for merge.

 - Legacy-Id: 17724

Author: rjsparks

ietf/meeting/tests_views.py

@@ -2368,7 +2368,7 @@ def test_upload_bluesheets_interim(self):
     def test_upload_bluesheets_interim_chair_access(self):
         make_meeting_test_data()
         mars = Group.objects.get(acronym='mars')
-        session=SessionFactory(meeting__type_id='interim',group=mars)
+        session=SessionFactory(meeting__type_id='interim',group=mars, meeting__date = datetime.date.today())
         url = urlreverse('ietf.meeting.views.upload_session_bluesheets',kwargs={'num':session.meeting.number,'session_id':session.id})
         self.client.login(username="marschairman", password="marschairman+password")
         r = self.client.get(url)

ietf/meeting/views.py

@@ -1645,11 +1645,15 @@ def __init__(self, *args, **kwargs):
         super(UploadBlueSheetForm, self).__init__(*args, **kwargs )
 
 
-@role_required('Area Director', 'Secretariat', 'IRTF Chair', 'WG Chair', 'RG Chair')
 def upload_session_bluesheets(request, session_id, num):
     # num is redundant, but we're dragging it along an artifact of where we are in the current URL structure
     session = get_object_or_404(Session,pk=session_id)
 
+    if not session.can_manage_materials(request.user):
+        return HttpResponseForbidden("You don't have permission to upload bluesheets for this session.")
+    if session.is_material_submission_cutoff() and not has_role(request.user, "Secretariat"):
+        return HttpResponseForbidden("The materials cutoff for this session has passed. Contact the secretariat for further action.")
+
     if session.meeting.type.slug == 'ietf' and not has_role(request.user, 'Secretariat'):
         return HttpResponseForbidden('Restricted to role Secretariat')