Move Request-specific auth checks into requests.authorization

2018-10-04 13:37:15 -04:00
parent d8d05daf8d
commit fcc1caca1c
4 changed files with 33 additions and 53 deletions
--- a/atst/domain/authz.py
+++ b/atst/domain/authz.py
@@ -17,28 +17,6 @@ class Authorization(object):
    def is_in_workspace(cls, user, workspace):
        return user in workspace.users

-    @classmethod
-    def can_view_request(cls, user, request):
-        if (
-            Permissions.REVIEW_AND_APPROVE_JEDI_WORKSPACE_REQUEST
-            in user.atat_permissions
-        ):
-            return True
-        elif request.creator == user:
-            return True
-
-        return False
-
-    @classmethod
-    def check_can_approve_request(cls, user):
-        if (
-            Permissions.REVIEW_AND_APPROVE_JEDI_WORKSPACE_REQUEST
-            in user.atat_permissions
-        ):
-            return True
-        else:
-            raise UnauthorizedError(user, "cannot review and approve requests")
-
    @classmethod
    def check_workspace_permission(cls, user, workspace, permission, message):
        if not Authorization.has_workspace_permission(user, workspace, permission):