OpenSlides/openslides/users/signals.py

from django import forms
from django.contrib.contenttypes.models import ContentType
from django.utils.translation import ugettext as _
from django.utils.translation import ugettext_lazy, ugettext_noop

from openslides.config.api import ConfigGroup, ConfigGroupedCollection, ConfigVariable

from .models import Group, Permission, User


def setup_users_config(sender, **kwargs):
    """
    Receiver function to setup all users config variables. It is connected
    to the signal openslides.config.signals.config_signal during app loading.
    """
    # General
    users_sort_users_by_first_name = ConfigVariable(
        name='users_sort_users_by_first_name',
        default_value=False,
        form_field=forms.BooleanField(
            required=False,
            label=ugettext_lazy('Sort users by first name'),
            help_text=ugettext_lazy('Disable for sorting by last name')))

    group_general = ConfigGroup(
        title=ugettext_lazy('Sorting'),
        variables=(users_sort_users_by_first_name,))

    # PDF
    users_pdf_welcometitle = ConfigVariable(
        name='users_pdf_welcometitle',
        default_value=_('Welcome to OpenSlides!'),
        translatable=True,
        form_field=forms.CharField(
            widget=forms.Textarea(),
            required=False,
            label=ugettext_lazy('Title for access data and welcome PDF')))

    users_pdf_welcometext = ConfigVariable(
        name='users_pdf_welcometext',
        default_value=_('[Place for your welcome and help text.]'),
        translatable=True,
        form_field=forms.CharField(
            widget=forms.Textarea(),
            required=False,
            label=ugettext_lazy('Help text for access data and welcome PDF')))

    users_pdf_url = ConfigVariable(
        name='users_pdf_url',
        default_value='http://example.com:8000',
        form_field=forms.CharField(
            widget=forms.TextInput(),
            required=False,
            label=ugettext_lazy('System URL'),
            help_text=ugettext_lazy('Used for QRCode in PDF of access data.')))

    users_pdf_wlan_ssid = ConfigVariable(
        name='users_pdf_wlan_ssid',
        default_value='',
        form_field=forms.CharField(
            widget=forms.TextInput(),
            required=False,
            label=ugettext_lazy('WLAN name (SSID)'),
            help_text=ugettext_lazy('Used for WLAN QRCode in PDF of access data.')))

    users_pdf_wlan_password = ConfigVariable(
        name='users_pdf_wlan_password',
        default_value='',
        form_field=forms.CharField(
            widget=forms.TextInput(),
            required=False,
            label=ugettext_lazy('WLAN password'),
            help_text=ugettext_lazy('Used for WLAN QRCode in PDF of access data.')))

    users_pdf_wlan_encryption = ConfigVariable(
        name='users_pdf_wlan_encryption',
        default_value='',
        form_field=forms.ChoiceField(
            widget=forms.Select(),
            required=False,
            label=ugettext_lazy('WLAN encryption'),
            help_text=ugettext_lazy('Used for WLAN QRCode in PDF of access data.'),
            choices=(
                ('', '---------'),
                ('WEP', 'WEP'),
                ('WPA', 'WPA/WPA2'),
                ('nopass', ugettext_lazy('No encryption')))))

    group_pdf = ConfigGroup(
        title=ugettext_lazy('PDF'),
        variables=(users_pdf_welcometitle,
                   users_pdf_welcometext,
                   users_pdf_url,
                   users_pdf_wlan_ssid,
                   users_pdf_wlan_password,
                   users_pdf_wlan_encryption))

    return ConfigGroupedCollection(
        title=ugettext_noop('Users'),
        url='users',
        weight=50,
        groups=(group_general, group_pdf))


def create_builtin_groups_and_admin(**kwargs):
    """
    Creates the builtin groups: Anonymous, Registered, Delegates and Staff.

    Creates the builtin user: admin.
    """
    # Check whether the group pks 1 to 4 are free
    if Group.objects.filter(pk__in=range(1, 5)).exists():
        # Do completely nothing if there are already some of our groups in the database.
        return

    # Anonymous (pk 1) and Registered (pk 2)
    ct_core = ContentType.objects.get(app_label='core', model='customslide')
    perm_11 = Permission.objects.get(content_type=ct_core, codename='can_see_projector')
    perm_12 = Permission.objects.get(content_type=ct_core, codename='can_see_dashboard')

    ct_agenda = ContentType.objects.get(app_label='agenda', model='item')
    ct_speaker = ContentType.objects.get(app_label='agenda', model='speaker')
    perm_13 = Permission.objects.get(content_type=ct_agenda, codename='can_see_agenda')
    perm_14 = Permission.objects.get(content_type=ct_agenda, codename='can_see_orga_items')
    can_speak = Permission.objects.get(content_type=ct_speaker, codename='can_be_speaker')

    ct_motion = ContentType.objects.get(app_label='motion', model='motion')
    perm_15 = Permission.objects.get(content_type=ct_motion, codename='can_see_motion')

    ct_assignment = ContentType.objects.get(app_label='assignment', model='assignment')
    perm_16 = Permission.objects.get(content_type=ct_assignment, codename='can_see_assignments')

    ct_users = ContentType.objects.get(app_label='users', model='user')
    perm_users_can_see_name = Permission.objects.get(content_type=ct_users, codename='can_see_name')
    perm_users_can_see_extra_data = Permission.objects.get(content_type=ct_users, codename='can_see_extra_data')

    ct_mediafile = ContentType.objects.get(app_label='mediafile', model='mediafile')
    perm_18 = Permission.objects.get(content_type=ct_mediafile, codename='can_see')

    base_permission_list = (
        perm_11,
        perm_12,
        perm_13,
        perm_14,
        perm_15,
        perm_16,
        perm_users_can_see_name,
        perm_users_can_see_extra_data,
        perm_18)

    group_anonymous = Group.objects.create(name=ugettext_noop('Anonymous'), pk=1)
    group_anonymous.permissions.add(*base_permission_list)
    group_registered = Group.objects.create(name=ugettext_noop('Registered'), pk=2)
    group_registered.permissions.add(can_speak, *base_permission_list)

    # Delegates (pk 3)
    perm_31 = Permission.objects.get(content_type=ct_motion, codename='can_create_motion')
    perm_32 = Permission.objects.get(content_type=ct_motion, codename='can_support_motion')
    perm_33 = Permission.objects.get(content_type=ct_assignment, codename='can_nominate_other')
    perm_34 = Permission.objects.get(content_type=ct_assignment, codename='can_nominate_self')
    perm_35 = Permission.objects.get(content_type=ct_mediafile, codename='can_upload')

    group_delegates = Group.objects.create(name=ugettext_noop('Delegates'), pk=3)
    group_delegates.permissions.add(perm_31, perm_32, perm_33, perm_34, perm_35)

    # Staff (pk 4)
    perm_41 = Permission.objects.get(content_type=ct_agenda, codename='can_manage_agenda')
    perm_42 = Permission.objects.get(content_type=ct_motion, codename='can_manage_motion')
    perm_43 = Permission.objects.get(content_type=ct_assignment, codename='can_manage_assignments')
    perm_44 = Permission.objects.get(content_type=ct_users, codename='can_manage')
    perm_45 = Permission.objects.get(content_type=ct_core, codename='can_manage_projector')
    perm_46 = Permission.objects.get(content_type=ct_core, codename='can_use_chat')
    perm_47 = Permission.objects.get(content_type=ct_mediafile, codename='can_manage')

    ct_config = ContentType.objects.get(app_label='config', model='configstore')
    perm_48 = Permission.objects.get(content_type=ct_config, codename='can_manage')

    ct_tag = ContentType.objects.get(app_label='core', model='tag')
    can_manage_tags = Permission.objects.get(content_type=ct_tag, codename='can_manage_tags')

    group_staff = Group.objects.create(name=ugettext_noop('Staff'), pk=4)
    # add delegate permissions (without can_support_motion)
    group_staff.permissions.add(perm_31, perm_33, perm_34, perm_35)
    # add staff permissions
    group_staff.permissions.add(perm_41, perm_42, perm_43, perm_44, perm_45, perm_46, perm_47, perm_48, can_manage_tags)
    # add can_see_name and can_see_extra_data permissions
    # TODO: Remove this redundancy after cleanup of the permission system.
    group_staff.permissions.add(perm_users_can_see_name, perm_users_can_see_extra_data)

    # Admin user
    User.objects.create_or_reset_admin_user()
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00			`from django import forms`
Refactored parts of users app. Refactored user creation and update via REST API. Used new serializer. Cleaned up management commands, signals and imports. Moved code from 'api.py' to 'models.py'. Changed usage of group 'Registered'. Now the users don't have to be members to gain its permissions. Used customized auth backend for this. Added and changed some tests. 2015-02-12 20:57:05 +01:00			`from django.contrib.contenttypes.models import ContentType`
Use flake8 instead of pep8. Orderd the imports with isort * changed the fab-command pep8 to check * checked and fixed any code with flake8. Also the urls.py * checkt the projector app with pylint 2013-09-25 10:01:01 +02:00			`from django.utils.translation import ugettext as _`
			`from django.utils.translation import ugettext_lazy, ugettext_noop`
Move builtin groups to a signal. 2013-03-12 20:58:22 +01:00
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`from openslides.config.api import ConfigGroup, ConfigGroupedCollection, ConfigVariable`
Move builtin groups to a signal. 2013-03-12 20:58:22 +01:00
Refactored parts of users app. Refactored user creation and update via REST API. Used new serializer. Cleaned up management commands, signals and imports. Moved code from 'api.py' to 'models.py'. Changed usage of group 'Registered'. Now the users don't have to be members to gain its permissions. Used customized auth backend for this. Added and changed some tests. 2015-02-12 20:57:05 +01:00			`from .models import Group, Permission, User`

Move builtin groups to a signal. 2013-03-12 20:58:22 +01:00
Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`def setup_users_config(sender, **kwargs):`
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00			`"""`
Added Django's application configuration. Used customized AppConfig classes in openslides.core, openslides.account, openslides.projector, openslides.agenda, openslides.motion, openslides.assignment, openslides.users, openslides.mediafile, openslides.config. Refactored loading of signals, template signals and slides. 2014-11-13 22:23:16 +01:00			`Receiver function to setup all users config variables. It is connected`
			`to the signal openslides.config.signals.config_signal during app loading.`
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00			`"""`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`# General`
Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`users_sort_users_by_first_name = ConfigVariable(`
			`name='users_sort_users_by_first_name',`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`default_value=False,`
			`form_field=forms.BooleanField(`
			`required=False,`
Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`label=ugettext_lazy('Sort users by first name'),`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`help_text=ugettext_lazy('Disable for sorting by last name')))`

			`group_general = ConfigGroup(`
			`title=ugettext_lazy('Sorting'),`
Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`variables=(users_sort_users_by_first_name,))`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00
			`# PDF`
Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`users_pdf_welcometitle = ConfigVariable(`
			`name='users_pdf_welcometitle',`
Fixed #948: Use DIN A4 format and wlan ssid qrcode on access data PDF. 2013-10-23 23:47:25 +02:00			`default_value=_('Welcome to OpenSlides!'),`
Inserted command line option to translate config strings during database setup. Fixed #460. 2014-01-31 01:54:41 +01:00			`translatable=True,`
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00			`form_field=forms.CharField(`
Fixed #948: Use DIN A4 format and wlan ssid qrcode on access data PDF. 2013-10-23 23:47:25 +02:00			`widget=forms.Textarea(),`
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00			`required=False,`
Fixed #948: Use DIN A4 format and wlan ssid qrcode on access data PDF. 2013-10-23 23:47:25 +02:00			`label=ugettext_lazy('Title for access data and welcome PDF')))`

Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`users_pdf_welcometext = ConfigVariable(`
			`name='users_pdf_welcometext',`
Fixed #948: Use DIN A4 format and wlan ssid qrcode on access data PDF. 2013-10-23 23:47:25 +02:00			`default_value=_('[Place for your welcome and help text.]'),`
Inserted command line option to translate config strings during database setup. Fixed #460. 2014-01-31 01:54:41 +01:00			`translatable=True,`
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00			`form_field=forms.CharField(`
			`widget=forms.Textarea(),`
			`required=False,`
Fixed #948: Use DIN A4 format and wlan ssid qrcode on access data PDF. 2013-10-23 23:47:25 +02:00			`label=ugettext_lazy('Help text for access data and welcome PDF')))`

Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`users_pdf_url = ConfigVariable(`
			`name='users_pdf_url',`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`default_value='http://example.com:8000',`
			`form_field=forms.CharField(`
			`widget=forms.TextInput(),`
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00			`required=False,`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`label=ugettext_lazy('System URL'),`
			`help_text=ugettext_lazy('Used for QRCode in PDF of access data.')))`

Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`users_pdf_wlan_ssid = ConfigVariable(`
			`name='users_pdf_wlan_ssid',`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`default_value='',`
			`form_field=forms.CharField(`
			`widget=forms.TextInput(),`
			`required=False,`
			`label=ugettext_lazy('WLAN name (SSID)'),`
			`help_text=ugettext_lazy('Used for WLAN QRCode in PDF of access data.')))`

Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`users_pdf_wlan_password = ConfigVariable(`
			`name='users_pdf_wlan_password',`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`default_value='',`
			`form_field=forms.CharField(`
			`widget=forms.TextInput(),`
			`required=False,`
			`label=ugettext_lazy('WLAN password'),`
			`help_text=ugettext_lazy('Used for WLAN QRCode in PDF of access data.')))`

Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`users_pdf_wlan_encryption = ConfigVariable(`
			`name='users_pdf_wlan_encryption',`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`default_value='',`
			`form_field=forms.ChoiceField(`
			`widget=forms.Select(),`
			`required=False,`
			`label=ugettext_lazy('WLAN encryption'),`
			`help_text=ugettext_lazy('Used for WLAN QRCode in PDF of access data.'),`
			`choices=(`
			`('', '---------'),`
			`('WEP', 'WEP'),`
			`('WPA', 'WPA/WPA2'),`
			`('nopass', ugettext_lazy('No encryption')))))`

			`group_pdf = ConfigGroup(`
			`title=ugettext_lazy('PDF'),`
Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`variables=(users_pdf_welcometitle,`
			`users_pdf_welcometext,`
			`users_pdf_url,`
			`users_pdf_wlan_ssid,`
			`users_pdf_wlan_password,`
			`users_pdf_wlan_encryption))`
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`return ConfigGroupedCollection(`
Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`title=ugettext_noop('Users'),`
			`url='users',`
Regrouped config collections and pages. Fixed #1201. 2014-01-31 00:55:18 +01:00			`weight=50,`
			`groups=(group_general, group_pdf))`
New config app. Apps only have to define config vars once. Config pages, forms and so on are created automaticly. Changes after some reviews are done. Problematic is still that the JS can not be moved to an extra file because of the template tags in the code. 2013-03-01 17:13:12 +01:00

Refactored parts of users app. Refactored user creation and update via REST API. Used new serializer. Cleaned up management commands, signals and imports. Moved code from 'api.py' to 'models.py'. Changed usage of group 'Registered'. Now the users don't have to be members to gain its permissions. Used customized auth backend for this. Added and changed some tests. 2015-02-12 20:57:05 +01:00			`def create_builtin_groups_and_admin(**kwargs):`
Added Django's application configuration. Used customized AppConfig classes in openslides.core, openslides.account, openslides.projector, openslides.agenda, openslides.motion, openslides.assignment, openslides.users, openslides.mediafile, openslides.config. Refactored loading of signals, template signals and slides. 2014-11-13 22:23:16 +01:00			`"""`
Refactored parts of users app. Refactored user creation and update via REST API. Used new serializer. Cleaned up management commands, signals and imports. Moved code from 'api.py' to 'models.py'. Changed usage of group 'Registered'. Now the users don't have to be members to gain its permissions. Used customized auth backend for this. Added and changed some tests. 2015-02-12 20:57:05 +01:00			`Creates the builtin groups: Anonymous, Registered, Delegates and Staff.`

			`Creates the builtin user: admin.`
Added Django's application configuration. Used customized AppConfig classes in openslides.core, openslides.account, openslides.projector, openslides.agenda, openslides.motion, openslides.assignment, openslides.users, openslides.mediafile, openslides.config. Refactored loading of signals, template signals and slides. 2014-11-13 22:23:16 +01:00			`"""`
Refactored parts of users app. Refactored user creation and update via REST API. Used new serializer. Cleaned up management commands, signals and imports. Moved code from 'api.py' to 'models.py'. Changed usage of group 'Registered'. Now the users don't have to be members to gain its permissions. Used customized auth backend for this. Added and changed some tests. 2015-02-12 20:57:05 +01:00			`# Check whether the group pks 1 to 4 are free`
			`if Group.objects.filter(pk__in=range(1, 5)).exists():`
			`# Do completely nothing if there are already some of our groups in the database.`
Refactory of the participant app * New user model (used Django's AbstractBaseUser) * Renamed the app to users * removed person api See #861 Fixed #576 #478 2014-10-11 14:34:49 +02:00			`return`

Refactored parts of users app. Refactored user creation and update via REST API. Used new serializer. Cleaned up management commands, signals and imports. Moved code from 'api.py' to 'models.py'. Changed usage of group 'Registered'. Now the users don't have to be members to gain its permissions. Used customized auth backend for this. Added and changed some tests. 2015-02-12 20:57:05 +01:00			`# Anonymous (pk 1) and Registered (pk 2)`
			`ct_core = ContentType.objects.get(app_label='core', model='customslide')`
			`perm_11 = Permission.objects.get(content_type=ct_core, codename='can_see_projector')`
			`perm_12 = Permission.objects.get(content_type=ct_core, codename='can_see_dashboard')`

			`ct_agenda = ContentType.objects.get(app_label='agenda', model='item')`
			`ct_speaker = ContentType.objects.get(app_label='agenda', model='speaker')`
			`perm_13 = Permission.objects.get(content_type=ct_agenda, codename='can_see_agenda')`
			`perm_14 = Permission.objects.get(content_type=ct_agenda, codename='can_see_orga_items')`
			`can_speak = Permission.objects.get(content_type=ct_speaker, codename='can_be_speaker')`

			`ct_motion = ContentType.objects.get(app_label='motion', model='motion')`
			`perm_15 = Permission.objects.get(content_type=ct_motion, codename='can_see_motion')`

			`ct_assignment = ContentType.objects.get(app_label='assignment', model='assignment')`
			`perm_16 = Permission.objects.get(content_type=ct_assignment, codename='can_see_assignments')`

			`ct_users = ContentType.objects.get(app_label='users', model='user')`
			`perm_users_can_see_name = Permission.objects.get(content_type=ct_users, codename='can_see_name')`
			`perm_users_can_see_extra_data = Permission.objects.get(content_type=ct_users, codename='can_see_extra_data')`

			`ct_mediafile = ContentType.objects.get(app_label='mediafile', model='mediafile')`
			`perm_18 = Permission.objects.get(content_type=ct_mediafile, codename='can_see')`

			`base_permission_list = (`
			`perm_11,`
			`perm_12,`
			`perm_13,`
			`perm_14,`
			`perm_15,`
			`perm_16,`
			`perm_users_can_see_name,`
			`perm_users_can_see_extra_data,`
			`perm_18)`

			`group_anonymous = Group.objects.create(name=ugettext_noop('Anonymous'), pk=1)`
			`group_anonymous.permissions.add(*base_permission_list)`
			`group_registered = Group.objects.create(name=ugettext_noop('Registered'), pk=2)`
			`group_registered.permissions.add(can_speak, *base_permission_list)`

			`# Delegates (pk 3)`
			`perm_31 = Permission.objects.get(content_type=ct_motion, codename='can_create_motion')`
			`perm_32 = Permission.objects.get(content_type=ct_motion, codename='can_support_motion')`
			`perm_33 = Permission.objects.get(content_type=ct_assignment, codename='can_nominate_other')`
			`perm_34 = Permission.objects.get(content_type=ct_assignment, codename='can_nominate_self')`
			`perm_35 = Permission.objects.get(content_type=ct_mediafile, codename='can_upload')`

			`group_delegates = Group.objects.create(name=ugettext_noop('Delegates'), pk=3)`
			`group_delegates.permissions.add(perm_31, perm_32, perm_33, perm_34, perm_35)`

			`# Staff (pk 4)`
			`perm_41 = Permission.objects.get(content_type=ct_agenda, codename='can_manage_agenda')`
			`perm_42 = Permission.objects.get(content_type=ct_motion, codename='can_manage_motion')`
			`perm_43 = Permission.objects.get(content_type=ct_assignment, codename='can_manage_assignments')`
			`perm_44 = Permission.objects.get(content_type=ct_users, codename='can_manage')`
			`perm_45 = Permission.objects.get(content_type=ct_core, codename='can_manage_projector')`
			`perm_46 = Permission.objects.get(content_type=ct_core, codename='can_use_chat')`
			`perm_47 = Permission.objects.get(content_type=ct_mediafile, codename='can_manage')`

			`ct_config = ContentType.objects.get(app_label='config', model='configstore')`
			`perm_48 = Permission.objects.get(content_type=ct_config, codename='can_manage')`

			`ct_tag = ContentType.objects.get(app_label='core', model='tag')`
			`can_manage_tags = Permission.objects.get(content_type=ct_tag, codename='can_manage_tags')`

			`group_staff = Group.objects.create(name=ugettext_noop('Staff'), pk=4)`
			`# add delegate permissions (without can_support_motion)`
			`group_staff.permissions.add(perm_31, perm_33, perm_34, perm_35)`
			`# add staff permissions`
			`group_staff.permissions.add(perm_41, perm_42, perm_43, perm_44, perm_45, perm_46, perm_47, perm_48, can_manage_tags)`
			`# add can_see_name and can_see_extra_data permissions`
			`# TODO: Remove this redundancy after cleanup of the permission system.`
			`group_staff.permissions.add(perm_users_can_see_name, perm_users_can_see_extra_data)`

			`# Admin user`
			`User.objects.create_or_reset_admin_user()`