richard
/
doccano
mirror of https://github.com/doccano/doccano.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
467 Commits
14 Branches
32 Tags
77 MiB
 
 
 
 
 
 
Tree: 463129c7e6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '463129c7e6'
${ noResults }
doccano/app/server/permissions.py

38 lines
1.1 KiB
Raw Blame History

from django.contrib.auth.mixins import UserPassesTestMixin
from django.shortcuts import get_object_or_404
from rest_framework.permissions import BasePermission, SAFE_METHODS, IsAdminUser
from .models import Project, SequenceAnnotation
class IsProjectUser(BasePermission):
def has_permission(self, request, view):
user = request.user
project_id = view.kwargs.get('project_id')
project = get_object_or_404(Project, pk=project_id)
return user in project.users.all()
class IsAdminUserAndWriteOnly(BasePermission):
def has_permission(self, request, view):
if request.method in SAFE_METHODS:
return True
return IsAdminUser().has_permission(request, view)
class IsMyEntity(BasePermission):
def has_permission(self, request, view):
entity_id = view.kwargs.get('entity_id')
entity = get_object_or_404(SequenceAnnotation, pk=entity_id)
return entity.user == request.user
class SuperUserMixin(UserPassesTestMixin):
def test_func(self):
return self.request.user.is_superuser