pk/atst
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Use new method for checking workspace permissions

Browse Source
This commit is contained in:
Montana 2018-09-04 14:56:36 -04:00
parent 03715d8e9b
commit 1808acd5f4
1 changed files with 19 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

31
atst/domain/workspaces.py
View File

@ -38,10 +38,13 @@ class Workspaces(object):
@classmethod
def get_for_update(cls, user, workspace_id):
workspace = Workspaces.get(user, workspace_id)
if not Authorization.has_workspace_permission(
user, workspace, Permissions.ADD_APPLICATION_IN_WORKSPACE
):
raise UnauthorizedError(user, "add project")
Authorization.check_workspace_permission(
user,
workspace,
Permissions.ADD_APPLICATION_IN_WORKSPACE,
"add project",
)
return workspace
@classmethod
@ -65,10 +68,12 @@ class Workspaces(object):
@classmethod
def create_member(cls, user, workspace, data):
if not Authorization.has_workspace_permission(
user, workspace, Permissions.ASSIGN_AND_UNASSIGN_ATAT_ROLE
):
raise UnauthorizedError(user, "create workspace member")
Authorization.check_workspace_permission(
user,
workspace,
Permissions.ASSIGN_AND_UNASSIGN_ATAT_ROLE,
"create workspace member",
)
new_user = Users.get_or_create_by_dod_id(
data["dod_id"],
@ -83,10 +88,12 @@ class Workspaces(object):
@classmethod
def update_member(cls, user, workspace, member, role_name):
if not Authorization.has_workspace_permission(
user, workspace, Permissions.ASSIGN_AND_UNASSIGN_ATAT_ROLE
):
raise UnauthorizedError(user, "update workspace member")
Authorization.check_workspace_permission(
user,
workspace,
Permissions.ASSIGN_AND_UNASSIGN_ATAT_ROLE,
"update workspace member",
)
return WorkspaceUsers.update_role(member, workspace.id, role_name)