TTMK/web2.0-backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Create new permission groups and fix member register permissions

Browse Source
This commit is contained in:
Jan Tuomi
2017-09-28 18:46:51 +03:00
parent 51a30d637f
commit 75d9fb1dbb
7 changed files with 37 additions and 57 deletions
Download Patch File Download Diff File Expand all files Collapse all files
members/views/applications.py
+5 -5
View File
@@ -18,7 +18,7 @@ from members.forms import ApplicationForm
@ensure_csrf_cookie
@require_http_methods(["GET"])
@permission_required('members.change_member', login_url='/login')
@permission_required('members.read_application', login_url='/login', raise_exception=True)
def application_list(request, *args, **kwargs):
"""List member applications not yet processed."""
applications = Request.objects.all()
@@ -40,7 +40,7 @@ def application_list(request, *args, **kwargs):
@ensure_csrf_cookie
@require_http_methods(["GET"])
@permission_required('members.change_member', login_url='/login')
@permission_required('members.change_request', login_url='/login', raise_exception=True)
def application_edit(request, *args, **kwargs):
"""Edit member request information."""
i = kwargs.pop('index', None)
@@ -58,7 +58,7 @@ def application_edit(request, *args, **kwargs):
@ensure_csrf_cookie
@require_http_methods(["POST"])
@permission_required('members.change_member', login_url='/login')
@permission_required('members.add_member', login_url='/login', raise_exception=True)
def application_accept(request, *args, **kwargs):
"""Accept application."""
form = ApplicationForm(request.POST)
@@ -86,7 +86,7 @@ def application_accept(request, *args, **kwargs):
@ensure_csrf_cookie
@require_http_methods(["POST"])
@permission_required('members.change_member', login_url='/login')
@permission_required('members.delete_request', login_url='/login', raise_exception=True)
def application_delete(request, *args, **kwargs):
"""Delete member application."""
try:
@@ -114,7 +114,7 @@ def application_delete(request, *args, **kwargs):
@ensure_csrf_cookie
@require_http_methods(["GET"])
@permission_required('members.change_member', login_url='/login')
@permission_required('members.delete_request', login_url='/login', raise_exception=True)
def application_delete_confirm(request, *args, **kwargs):
"""Confirm application deletion."""
i = kwargs.pop('index', None)