Raise AuthorizationError if user is not KO

2019-02-01 10:49:34 -05:00
parent 70b4a51d8a
commit 49ed059853
3 changed files with 13 additions and 13 deletions
--- a/atst/domain/authz.py
+++ b/atst/domain/authz.py
@@ -36,9 +36,13 @@ class Authorization(object):
    def is_ccpo(cls, user):
        return user.atat_role.name == "ccpo"

+    @classmethod
+    def is_ko(cls, user, task_order):
+        return task_order.contracting_officer == user
+
    @classmethod
    def check_task_order_permission(cls, user, task_order, permission, message):
-        if Authorization._check_is_task_order_officer(task_order, user):
+        if Authorization._check_is_task_order_officer(user, task_order):
            return True

        Authorization.check_portfolio_permission(
@@ -46,7 +50,7 @@ class Authorization(object):
        )

    @classmethod
-    def _check_is_task_order_officer(cls, task_order, user):
+    def _check_is_task_order_officer(cls, user, task_order):
        for officer in [
            "contracting_officer",
            "contracting_officer_representative",