2c09b409d7
get_restricted_data() has to use deepcopy(full_data) instead of full_data.copy().
134 lines
4.0 KiB
Python
134 lines
4.0 KiB
Python
from copy import deepcopy
|
|
|
|
from ..core.config import config
|
|
from ..utils.access_permissions import BaseAccessPermissions
|
|
|
|
|
|
class MotionAccessPermissions(BaseAccessPermissions):
|
|
"""
|
|
Access permissions container for Motion and MotionViewSet.
|
|
"""
|
|
def check_permissions(self, user):
|
|
"""
|
|
Returns True if the user has read access model instances.
|
|
"""
|
|
return user.has_perm('motions.can_see')
|
|
|
|
def get_serializer_class(self, user=None):
|
|
"""
|
|
Returns serializer class.
|
|
"""
|
|
from .serializers import MotionSerializer
|
|
|
|
return MotionSerializer
|
|
|
|
def get_restricted_data(self, full_data, user):
|
|
"""
|
|
Returns the restricted serialized data for the instance prepared for
|
|
the user. Removes non public comment fields for some unauthorized
|
|
users.
|
|
"""
|
|
if user.has_perm('motions.can_see_and_manage_comments') or not full_data.get('comments'):
|
|
data = full_data
|
|
else:
|
|
data = deepcopy(full_data)
|
|
for i, field in enumerate(config['motions_comments']):
|
|
if not field.get('public'):
|
|
try:
|
|
data['comments'][i] = None
|
|
except IndexError:
|
|
# No data in range. Just do nothing.
|
|
pass
|
|
return data
|
|
|
|
def get_projector_data(self, full_data):
|
|
"""
|
|
Returns the restricted serialized data for the instance prepared
|
|
for the projector. Removes several fields.
|
|
"""
|
|
data = full_data.copy()
|
|
for i, field in enumerate(config['motions_comments']):
|
|
if not field.get('public'):
|
|
try:
|
|
data['comments'][i] = None
|
|
except IndexError:
|
|
# No data in range. Just do nothing.
|
|
pass
|
|
return data
|
|
|
|
|
|
class MotionChangeRecommendationAccessPermissions(BaseAccessPermissions):
|
|
"""
|
|
Access permissions container for MotionChangeRecommendation and MotionChangeRecommendationViewSet.
|
|
"""
|
|
def check_permissions(self, user):
|
|
"""
|
|
Returns True if the user has read access model instances.
|
|
"""
|
|
return user.has_perm('motions.can_see')
|
|
|
|
def get_serializer_class(self, user=None):
|
|
"""
|
|
Returns serializer class.
|
|
"""
|
|
from .serializers import MotionChangeRecommendationSerializer
|
|
|
|
return MotionChangeRecommendationSerializer
|
|
|
|
|
|
class CategoryAccessPermissions(BaseAccessPermissions):
|
|
"""
|
|
Access permissions container for Category and CategoryViewSet.
|
|
"""
|
|
def check_permissions(self, user):
|
|
"""
|
|
Returns True if the user has read access model instances.
|
|
"""
|
|
return user.has_perm('motions.can_see')
|
|
|
|
def get_serializer_class(self, user=None):
|
|
"""
|
|
Returns serializer class.
|
|
"""
|
|
from .serializers import CategorySerializer
|
|
|
|
return CategorySerializer
|
|
|
|
|
|
class MotionBlockAccessPermissions(BaseAccessPermissions):
|
|
"""
|
|
Access permissions container for Category and CategoryViewSet.
|
|
"""
|
|
def check_permissions(self, user):
|
|
"""
|
|
Returns True if the user has read access model instances.
|
|
"""
|
|
return user.has_perm('motions.can_see')
|
|
|
|
def get_serializer_class(self, user=None):
|
|
"""
|
|
Returns serializer class.
|
|
"""
|
|
from .serializers import MotionBlockSerializer
|
|
|
|
return MotionBlockSerializer
|
|
|
|
|
|
class WorkflowAccessPermissions(BaseAccessPermissions):
|
|
"""
|
|
Access permissions container for Workflow and WorkflowViewSet.
|
|
"""
|
|
def check_permissions(self, user):
|
|
"""
|
|
Returns True if the user has read access model instances.
|
|
"""
|
|
return user.has_perm('motions.can_see')
|
|
|
|
def get_serializer_class(self, user=None):
|
|
"""
|
|
Returns serializer class.
|
|
"""
|
|
from .serializers import WorkflowSerializer
|
|
|
|
return WorkflowSerializer
|