zopyx/gist:6e680bc5d8d96b4d5247a9ad08a3989f

## gistfile1.txt
#################################################################################################
# $HOME/.buildout/eggs/plone.app.workflow-2.1.9-py2.7.egg/plone/app/workflow/browser/sharing.py
#################################################################################################

from plone.app.workflow.events import LocalrolesModifiedEvent
from plone.app.workflow import PloneMessageFactory as _
from Products.statusmessages.interfaces import IStatusMessage
from zope.event import notify


def sharing_handle_form(self):
    """
    We split this out so we can reuse this for ajax.
    Will return a boolean if it was a post or not
    """

    postback = True

    form = self.request.form
    submitted = form.get('form.submitted', False)
    save_button = form.get('form.button.Save', None) is not None
    cancel_button = form.get('form.button.Cancel', None) is not None
    if submitted and save_button and not cancel_button:
        if not self.request.get('REQUEST_METHOD', 'GET') == 'POST':
            raise Forbidden

        old_ac_local_roles_block = getattr(self.context, '__ac_local_roles_block__', None)

        authenticator = self.context.restrictedTraverse('@@authenticator',
                                                        None)
        if not authenticator.verify():
            raise Forbidden

        # Update the acquire-roles setting
        if self.can_edit_inherit():
            inherit = bool(form.get('inherit', False))
            reindex = self.update_inherit(inherit, reindex=False)
        else:
            reindex = False

        entries = form.get('entries', [])
        roles = [r['id'] for r in self.roles()]
        settings = []
        for entry in entries:
            settings.append(
                dict(id=entry['id'],
                     type=entry['type'],
                     roles=[r for r in roles
                        if entry.get('role_%s' % r, False)]))
        if settings:

            old_settings = self.context.get_local_roles()
            old_settings_dict = dict([(userid, set(roles)) for userid, roles in old_settings])
            settings_dict = dict([(d['id'], set(d['roles'])) for d in settings])

            old_userids = set([tp[0] for tp in old_settings if list(tp[1]) != ['Owner']])
            new_userids = set([d['id'] for d in settings if d['roles']])
            all_userids = old_userids | new_userids

            reindex = self.update_role_settings(settings, reindex=False) \
                        or reindex
            new_ac_local_roles_block = getattr(self.context, '__ac_local_roles_block__', None)

            diff_context = dict()
            diff_context['removed_userids'] = old_userids - new_userids
            diff_context['added_userids'] = new_userids - old_userids
            diff_context['block_localroles'] = bool(new_ac_local_roles_block)
            diff_context['role_changes'] = dict()
            for userid, roles in settings_dict.items():
                old_roles = old_settings_dict.get(userid, ())
                if roles == old_roles:
                    continue

                roles_added = roles - old_roles
                roles_removed = old_roles - roles
                diff_context['role_changes'][userid] = dict(added=roles_added, removed=roles_removed)

        if reindex:
            self.context.reindexObjectSecurity()
            event = LocalrolesModifiedEvent(self.context, self.request)
            event.diff_context = diff_context
            notify(event)

        IStatusMessage(self.request).addStatusMessage(
            _(u"Changes saved."), type='info')

    # Other buttons return to the sharing page
    if cancel_button:
        postback = False

    return postback

from plone.app.workflow.browser.sharing import SharingView
SharingView.handle_form = sharing_handle_form
	#################################################################################################
	# $HOME/.buildout/eggs/plone.app.workflow-2.1.9-py2.7.egg/plone/app/workflow/browser/sharing.py
	#################################################################################################

	from plone.app.workflow.events import LocalrolesModifiedEvent
	from plone.app.workflow import PloneMessageFactory as _
	from Products.statusmessages.interfaces import IStatusMessage
	from zope.event import notify


	def sharing_handle_form(self):
	"""
	We split this out so we can reuse this for ajax.
	Will return a boolean if it was a post or not
	"""

	postback = True

	form = self.request.form
	submitted = form.get('form.submitted', False)
	save_button = form.get('form.button.Save', None) is not None
	cancel_button = form.get('form.button.Cancel', None) is not None
	if submitted and save_button and not cancel_button:
	if not self.request.get('REQUEST_METHOD', 'GET') == 'POST':
	raise Forbidden

	old_ac_local_roles_block = getattr(self.context, '__ac_local_roles_block__', None)

	authenticator = self.context.restrictedTraverse('@@authenticator',
	None)
	if not authenticator.verify():
	raise Forbidden

	# Update the acquire-roles setting
	if self.can_edit_inherit():
	inherit = bool(form.get('inherit', False))
	reindex = self.update_inherit(inherit, reindex=False)
	else:
	reindex = False

	entries = form.get('entries', [])
	roles = [r['id'] for r in self.roles()]
	settings = []
	for entry in entries:
	settings.append(
	dict(id=entry['id'],
	type=entry['type'],
	roles=[r for r in roles
	if entry.get('role_%s' % r, False)]))
	if settings:

	old_settings = self.context.get_local_roles()
	old_settings_dict = dict([(userid, set(roles)) for userid, roles in old_settings])
	settings_dict = dict([(d['id'], set(d['roles'])) for d in settings])

	old_userids = set([tp[0] for tp in old_settings if list(tp[1]) != ['Owner']])
	new_userids = set([d['id'] for d in settings if d['roles']])
	all_userids = old_userids \| new_userids

	reindex = self.update_role_settings(settings, reindex=False) \
	or reindex
	new_ac_local_roles_block = getattr(self.context, '__ac_local_roles_block__', None)

	diff_context = dict()
	diff_context['removed_userids'] = old_userids - new_userids
	diff_context['added_userids'] = new_userids - old_userids
	diff_context['block_localroles'] = bool(new_ac_local_roles_block)
	diff_context['role_changes'] = dict()
	for userid, roles in settings_dict.items():
	old_roles = old_settings_dict.get(userid, ())
	if roles == old_roles:
	continue

	roles_added = roles - old_roles
	roles_removed = old_roles - roles
	diff_context['role_changes'][userid] = dict(added=roles_added, removed=roles_removed)

	if reindex:
	self.context.reindexObjectSecurity()
	event = LocalrolesModifiedEvent(self.context, self.request)
	event.diff_context = diff_context
	notify(event)

	IStatusMessage(self.request).addStatusMessage(
	_(u"Changes saved."), type='info')

	# Other buttons return to the sharing page
	if cancel_button:
	postback = False

	return postback

	from plone.app.workflow.browser.sharing import SharingView
	SharingView.handle_form = sharing_handle_form