Add DELETE_APPLICATION_MEMBER permission

2019-05-14 13:39:20 -04:00 · 2019-05-14 13:39:20 -04:00 · f1299dc4b0
commit f1299dc4b0
parent 4aea264026
5 changed files with 6 additions and 4 deletions
--- a/atst/domain/permission_sets.py
+++ b/atst/domain/permission_sets.py
@ -88,6 +88,7 @@ _PORTFOLIO_APP_MGMT_PERMISSION_SETS = [
            Permissions.CREATE_APPLICATION,
            Permissions.DELETE_APPLICATION,
            Permissions.EDIT_APPLICATION_MEMBER,
            Permissions.DELETE_APPLICATION_MEMBER,
            Permissions.CREATE_APPLICATION_MEMBER,
            Permissions.EDIT_ENVIRONMENT,
            Permissions.CREATE_ENVIRONMENT,
@ -205,6 +206,7 @@ _APPLICATION_TEAM_PERMISSION_SET = {
    "display_name": "Manage team",
    "permissions": [
        Permissions.EDIT_APPLICATION_MEMBER,
        Permissions.DELETE_APPLICATION_MEMBER,
        Permissions.CREATE_APPLICATION_MEMBER,
        Permissions.ASSIGN_ENVIRONMENT_MEMBER,
    ],
--- a/atst/models/permissions.py
+++ b/atst/models/permissions.py
@ -11,6 +11,7 @@ class Permissions(object):
    DELETE_APPLICATION = "delete_application"
    VIEW_APPLICATION_MEMBER = "view_application_member"
    EDIT_APPLICATION_MEMBER = "edit_application_member"
    DELETE_APPLICATION_MEMBER = "delete_application_member"
    CREATE_APPLICATION_MEMBER = "create_application_member"
    VIEW_ENVIRONMENT = "view_environment"
    EDIT_ENVIRONMENT = "edit_environment"
--- a/atst/routes/applications/team.py
+++ b/atst/routes/applications/team.py
@ -164,8 +164,7 @@ def create_member(application_id):
@applications_bp.route(
    "/applications/<application_id>/members/<user_id>/delete", methods=["POST"]
 )
-# TODO: Is this correct??
+@user_can(Permissions.DELETE_APPLICATION_MEMBER, message="remove application member")
@user_can(Permissions.EDIT_APPLICATION_MEMBER, message="remove application member")
 def remove_member(application_id, user_id):
    Applications.remove_member(application=g.application, user_id=user_id)
    user = Users.get(user_id)
--- a/templates/fragments/applications/edit_team.html
+++ b/templates/fragments/applications/edit_team.html
@ -39,7 +39,7 @@
              {{ environment_form.environment_name.data }}
            </li>
          {% endfor %}
-          {% if user_can(permissions.EDIT_APPLICATION_MEMBER) %}
+          {% if user_can(permissions.DELETE_APPLICATION_MEMBER) %}
            <li class="accordion-table__item__expanded action-group">
              <span class="usa-button button-danger" v-on:click="openModal('{{ delete_modal_id }}')">
                {{ "portfolios.members.archive_button" | translate }}
--- a/templates/portfolios/applications/team.html
+++ b/templates/portfolios/applications/team.html
@ -113,7 +113,7 @@
        </form>
      </base-form>
-      {% if user_can(permissions.EDIT_APPLICATION_MEMBER) %}
+      {% if user_can(permissions.DELETE_APPLICATION_MEMBER) %}
        {% for member_form in team_form.members %}
          {% set delete_modal_id = "delete-user-{}".format(member_form.id) %}
          {% call Modal(name=delete_modal_id, dismissable=True) %}