richard
/
doccano
mirror of https://github.com/doccano/doccano.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3066 Commits
14 Branches
32 Tags
77 MiB
Tree: 3bb844fa1e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3bb844fa1e'
${ noResults }
doccano/backend/projects/permissions.py

54 lines
1.6 KiB
Raw Normal View History

Move Role and RoleMapping from api to roles
2 years ago
Apply isort
2 years ago
Move Role and RoleMapping from api to roles
2 years ago
Add has_role method to MemberManager
2 years ago
Move Role and RoleMapping from api to roles
2 years ago
Remove ProjectMixin
2 years ago
Black files
2 years ago
Move Role and RoleMapping from api to roles
2 years ago
Black files
2 years ago
Move Role and RoleMapping from api to roles
2 years ago
Remove ProjectMixin
2 years ago
Black files
2 years ago
Remove ProjectMixin
2 years ago
Move Role and RoleMapping from api to roles
2 years ago
Add has_role method to MemberManager
2 years ago
Move Role and RoleMapping from api to roles
2 years ago
Add mypy as a dependency
2 years ago
  1. from django.conf import settings
  2. from rest_framework.permissions import SAFE_METHODS, BasePermission
  4. from .models import Member
  7. class RolePermission(BasePermission):
  8. UNSAFE_METHODS = ("POST", "PATCH", "DELETE")
  9. unsafe_methods_check = True
  10. role_name = ""
  12. @classmethod
  13. def get_project_id(cls, request, view):
  14. return view.kwargs.get("project_id") or request.query_params.get("project_id")
  16. def has_permission(self, request, view):
  17. if request.user.is_superuser:
  18. return True
  20. if self.unsafe_methods_check and request.method in self.UNSAFE_METHODS:
  21. return request.user.is_superuser
  23. project_id = self.get_project_id(request, view)
  24. if not project_id and request.method in SAFE_METHODS:
  25. return True
  27. return Member.objects.has_role(project_id, request.user, self.role_name)
  30. class IsProjectAdmin(RolePermission):
  31. unsafe_methods_check = False
  32. role_name = settings.ROLE_PROJECT_ADMIN
  35. class IsAnnotatorAndReadOnly(RolePermission):
  36. role_name = settings.ROLE_ANNOTATOR
  39. class IsAnnotator(RolePermission):
  40. unsafe_methods_check = False
  41. role_name = settings.ROLE_ANNOTATOR
  44. class IsAnnotationApproverAndReadOnly(RolePermission):
  45. role_name = settings.ROLE_ANNOTATION_APPROVER
  48. class IsAnnotationApprover(RolePermission):
  49. unsafe_methods_check = False
  50. role_name = settings.ROLE_ANNOTATION_APPROVER
  53. IsProjectMember = IsAnnotator | IsAnnotationApprover | IsProjectAdmin # type: ignore
  54. IsProjectStaffAndReadOnly = IsAnnotatorAndReadOnly | IsAnnotationApproverAndReadOnly # type: ignore