taiga
/
taiga-back
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add IsAuthenticated perrmission to api views.

remotes/origin/enhancement/email-actions
Andrey Antukh 2013-04-01 13:27:29 +02:00
parent 378122ac42
commit 4802a76d2e
1 changed files with 32 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

46
greenmine/scrum/api.py
View File

@ -1,6 +1,7 @@
import django_filters import django_filters
from rest_framework import generics from rest_framework import generics
from rest_framework.permissions import IsAuthenticated
from greenmine.scrum.serializers import * from greenmine.scrum.serializers import *
from greenmine.scrum.models import * from greenmine.scrum.models import *
@ -13,6 +14,7 @@ class UserStoryFilter(django_filters.FilterSet):
model = UserStory model = UserStory
fields = ['project', 'milestone', 'no_milestone'] fields = ['project', 'milestone', 'no_milestone']
class SimpleFilterMixin(object): class SimpleFilterMixin(object):
filter_fields = [] filter_fields = []
filter_special_fields = [] filter_special_fields = []
@ -44,6 +46,7 @@ class SimpleFilterMixin(object):
class ProjectList(generics.ListCreateAPIView): class ProjectList(generics.ListCreateAPIView):
model = Project model = Project
serializer_class = ProjectSerializer serializer_class = ProjectSerializer
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(members=self.request.user) return self.model.objects.filter(members=self.request.user)
@ -51,16 +54,18 @@ class ProjectList(generics.ListCreateAPIView):
def pre_save(self, obj): def pre_save(self, obj):
obj.owner = self.request.user obj.owner = self.request.user
class ProjectDetail(generics.RetrieveUpdateDestroyAPIView): class ProjectDetail(generics.RetrieveUpdateDestroyAPIView):
model = Project model = Project
serializer_class = ProjectSerializer serializer_class = ProjectSerializer
permission_classes = (ProjectDetailPermission,) permission_classes = (IsAuthenticated, ProjectDetailPermission,)
class MilestoneList(generics.ListCreateAPIView): class MilestoneList(generics.ListCreateAPIView):
model = Milestone model = Milestone
serializer_class = MilestoneSerializer serializer_class = MilestoneSerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -72,13 +77,14 @@ class MilestoneList(generics.ListCreateAPIView):
class MilestoneDetail(generics.RetrieveUpdateDestroyAPIView): class MilestoneDetail(generics.RetrieveUpdateDestroyAPIView):
model = Milestone model = Milestone
serializer_class = MilestoneSerializer serializer_class = MilestoneSerializer
permission_classes = (MilestoneDetailPermission,) permission_classes = (IsAuthenticated, MilestoneDetailPermission,)
class UserStoryList(generics.ListCreateAPIView): class UserStoryList(generics.ListCreateAPIView):
model = UserStory model = UserStory
serializer_class = UserStorySerializer serializer_class = UserStorySerializer
filter_class = UserStoryFilter filter_class = UserStoryFilter
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -90,12 +96,13 @@ class UserStoryList(generics.ListCreateAPIView):
class UserStoryDetail(generics.RetrieveUpdateDestroyAPIView): class UserStoryDetail(generics.RetrieveUpdateDestroyAPIView):
model = UserStory model = UserStory
serializer_class = UserStorySerializer serializer_class = UserStorySerializer
permission_classes = (UserStoryDetailPermission,) permission_classes = (IsAuthenticated, UserStoryDetailPermission,)
class ChangeList(generics.ListCreateAPIView): class ChangeList(generics.ListCreateAPIView):
model = Change model = Change
serializer_class = ChangeSerializer serializer_class = ChangeSerializer
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -107,12 +114,13 @@ class ChangeList(generics.ListCreateAPIView):
class ChangeDetail(generics.RetrieveUpdateDestroyAPIView): class ChangeDetail(generics.RetrieveUpdateDestroyAPIView):
model = Change model = Change
serializer_class = ChangeSerializer serializer_class = ChangeSerializer
permission_classes = (ChangeDetailPermission,) permission_classes = (IsAuthenticated, ChangeDetailPermission,)
class ChangeAttachmentList(generics.ListCreateAPIView): class ChangeAttachmentList(generics.ListCreateAPIView):
model = ChangeAttachment model = ChangeAttachment
serializer_class = ChangeAttachmentSerializer serializer_class = ChangeAttachmentSerializer
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(change__project__members=self.request.user) return self.model.objects.filter(change__project__members=self.request.user)
@ -124,13 +132,14 @@ class ChangeAttachmentList(generics.ListCreateAPIView):
class ChangeAttachmentDetail(generics.RetrieveUpdateDestroyAPIView): class ChangeAttachmentDetail(generics.RetrieveUpdateDestroyAPIView):
model = ChangeAttachment model = ChangeAttachment
serializer_class = ChangeAttachmentSerializer serializer_class = ChangeAttachmentSerializer
permission_classes = (ChangeAttachmentDetailPermission,) permission_classes = (IsAuthenticated, ChangeAttachmentDetailPermission,)
class IssueList(generics.ListCreateAPIView): class IssueList(generics.ListCreateAPIView):
model = Issue model = Issue
serializer_class = IssueSerializer serializer_class = IssueSerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -139,13 +148,14 @@ class IssueList(generics.ListCreateAPIView):
class IssueDetail(generics.RetrieveUpdateDestroyAPIView): class IssueDetail(generics.RetrieveUpdateDestroyAPIView):
model = Issue model = Issue
serializer_class = IssueSerializer serializer_class = IssueSerializer
permission_classes = (IssueDetailPermission,) permission_classes = (IsAuthenticated, IssueDetailPermission,)
class TaskList(generics.ListCreateAPIView): class TaskList(generics.ListCreateAPIView):
model = Task model = Task
serializer_class = TaskSerializer serializer_class = TaskSerializer
filter_fields = ('user_story', 'milestone', 'project') filter_fields = ('user_story', 'milestone', 'project')
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -157,13 +167,14 @@ class TaskList(generics.ListCreateAPIView):
class TaskDetail(generics.RetrieveUpdateDestroyAPIView): class TaskDetail(generics.RetrieveUpdateDestroyAPIView):
model = Task model = Task
serializer_class = TaskSerializer serializer_class = TaskSerializer
permission_classes = (TaskDetailPermission,) permission_classes = (IsAuthenticated, TaskDetailPermission,)
class IssueList(generics.ListCreateAPIView): class IssueList(generics.ListCreateAPIView):
model = Issue model = Issue
serializer_class = IssueSerializer serializer_class = IssueSerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def pre_save(self, obj): def pre_save(self, obj):
obj.owner = self.request.user obj.owner = self.request.user
@ -178,6 +189,7 @@ class SeverityList(generics.ListCreateAPIView):
model = Severity model = Severity
serializer_class = SeveritySerializer serializer_class = SeveritySerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -186,13 +198,14 @@ class SeverityList(generics.ListCreateAPIView):
class SeverityDetail(generics.RetrieveUpdateDestroyAPIView): class SeverityDetail(generics.RetrieveUpdateDestroyAPIView):
model = Severity model = Severity
serializer_class = SeveritySerializer serializer_class = SeveritySerializer
permission_classes = (SeverityDetailPermission,) permission_classes = (IsAuthenticated, SeverityDetailPermission,)
class IssueStatusList(generics.ListCreateAPIView): class IssueStatusList(generics.ListCreateAPIView):
model = IssueStatus model = IssueStatus
serializer_class = IssueStatusSerializer serializer_class = IssueStatusSerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -201,13 +214,14 @@ class IssueStatusList(generics.ListCreateAPIView):
class IssueStatusDetail(generics.RetrieveUpdateDestroyAPIView): class IssueStatusDetail(generics.RetrieveUpdateDestroyAPIView):
model = IssueStatus model = IssueStatus
serializer_class = IssueStatusSerializer serializer_class = IssueStatusSerializer
permission_classes = (IssueStatusDetailPermission,) permission_classes = (IsAuthenticated, IssueStatusDetailPermission,)
class TaskStatusList(SimpleFilterMixin, generics.ListCreateAPIView): class TaskStatusList(SimpleFilterMixin, generics.ListCreateAPIView):
model = TaskStatus model = TaskStatus
serializer_class = TaskStatusSerializer serializer_class = TaskStatusSerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -216,13 +230,14 @@ class TaskStatusList(SimpleFilterMixin, generics.ListCreateAPIView):
class TaskStatusDetail(generics.RetrieveUpdateDestroyAPIView): class TaskStatusDetail(generics.RetrieveUpdateDestroyAPIView):
model = TaskStatus model = TaskStatus
serializer_class = TaskStatusSerializer serializer_class = TaskStatusSerializer
permission_classes = (TaskStatusDetailPermission,) permission_classes = (IsAuthenticated, TaskStatusDetailPermission,)
class UserStoryStatusList(generics.ListCreateAPIView): class UserStoryStatusList(generics.ListCreateAPIView):
model = UserStoryStatus model = UserStoryStatus
serializer_class = UserStoryStatusSerializer serializer_class = UserStoryStatusSerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -231,13 +246,14 @@ class UserStoryStatusList(generics.ListCreateAPIView):
class UserStoryStatusDetail(generics.RetrieveUpdateDestroyAPIView): class UserStoryStatusDetail(generics.RetrieveUpdateDestroyAPIView):
model = UserStoryStatus model = UserStoryStatus
serializer_class = UserStoryStatusSerializer serializer_class = UserStoryStatusSerializer
permission_classes = (UserStoryStatusDetailPermission,) permission_classes = (IsAuthenticated, UserStoryStatusDetailPermission,)
class PriorityList(generics.ListCreateAPIView): class PriorityList(generics.ListCreateAPIView):
model = Priority model = Priority
serializer_class = PrioritySerializer serializer_class = PrioritySerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -246,13 +262,14 @@ class PriorityList(generics.ListCreateAPIView):
class PriorityDetail(generics.RetrieveUpdateDestroyAPIView): class PriorityDetail(generics.RetrieveUpdateDestroyAPIView):
model = Priority model = Priority
serializer_class = PrioritySerializer serializer_class = PrioritySerializer
permission_classes = (PriorityDetailPermission,) permission_classes = (IsAuthenticated, PriorityDetailPermission,)
class IssueTypeList(generics.ListCreateAPIView): class IssueTypeList(generics.ListCreateAPIView):
model = IssueType model = IssueType
serializer_class = IssueTypeSerializer serializer_class = IssueTypeSerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -261,13 +278,14 @@ class IssueTypeList(generics.ListCreateAPIView):
class IssueTypeDetail(generics.RetrieveUpdateDestroyAPIView): class IssueTypeDetail(generics.RetrieveUpdateDestroyAPIView):
model = IssueType model = IssueType
serializer_class = IssueTypeSerializer serializer_class = IssueTypeSerializer
permission_classes = (IssueTypeDetailPermission,) permission_classes = (IsAuthenticated, IssueTypeDetailPermission,)
class PointsList(generics.ListCreateAPIView): class PointsList(generics.ListCreateAPIView):
model = Points model = Points
serializer_class = PointsSerializer serializer_class = PointsSerializer
filter_fields = ('project',) filter_fields = ('project',)
permission_classes = (IsAuthenticated,)
def get_queryset(self): def get_queryset(self):
return self.model.objects.filter(project__members=self.request.user) return self.model.objects.filter(project__members=self.request.user)
@ -276,4 +294,4 @@ class PointsList(generics.ListCreateAPIView):
class PointsDetail(generics.RetrieveUpdateDestroyAPIView): class PointsDetail(generics.RetrieveUpdateDestroyAPIView):
model = Points model = Points
serializer_class = PointsSerializer serializer_class = PointsSerializer
permission_classes = (PointsDetailPermission,) permission_classes = (IsAuthenticated, PointsDetailPermission,)