grimhilt/signage-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

query for edit and view permissions on playlist

Browse Source
This commit is contained in:
grimhilt 2023-08-14 01:19:55 +02:00
parent 9ae9f1797a
commit 1a99011030
1 changed files with 24 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
src/api/permissions.py
View File

@ -107,8 +107,18 @@ class CheckViewPlaylist:
self.status_code = 404 self.status_code = 404
return False return False
# todo check view playlist_id = get_playlist_id(args)
return False user_id = current_user.as_dict()['id']
has_role_to_view = db.session.query(Playlist) \
.filter( \
Playlist.view.any( \
# check if a role belongs to this user
Role.user_id == user_id or \
# check if a this user has a role to view
Role.users.any(User.id == user_id) \
)) \
.first()
return has_role_to_view is not None
class CheckEditPlaylist: class CheckEditPlaylist:
def __init__(self): def __init__(self):
@ -124,8 +134,18 @@ class CheckEditPlaylist:
self.status_code = 404 self.status_code = 404
return False return False
# todo check edit playlist_id = get_playlist_id(args)
return False user_id = current_user.as_dict()['id']
has_role_to_edit = db.session.query(Playlist) \
.filter( \
Playlist.edit.any( \
# check if a role belongs to this user
Role.user_id == user_id or \
# check if a this user has a role to edit
Role.users.any(User.id == user_id) \
)) \
.first()
return has_role_to_edit is not None
class CheckCreateUser: class CheckCreateUser:
def __init__(self): def __init__(self):