|
|
|
@ -15,9 +15,9 @@ class IsAdmin(BasePermission): |
|
|
|
class IsTeacherOrAdmin(BasePermission): |
|
|
|
class IsTeacherOrAdmin(BasePermission): |
|
|
|
def has_permission(self, request, view): |
|
|
|
def has_permission(self, request, view): |
|
|
|
return request.user.is_authenticated and ( |
|
|
|
return request.user.is_authenticated and ( |
|
|
|
request.user.role in [ |
|
|
|
request.user.role > User.TEACHER_ROLE or |
|
|
|
User.TEACHER_ROLE, User.ADMIN_ROLE |
|
|
|
request.user.is_staff or |
|
|
|
] or request.user.is_staff or request.user.is_superuser |
|
|
|
request.user.is_superuser |
|
|
|
) |
|
|
|
) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@ -31,9 +31,9 @@ class IsAdminOrIsSelf(BasePermission): |
|
|
|
class IsAuthorOrAdmin(BasePermission): |
|
|
|
class IsAuthorOrAdmin(BasePermission): |
|
|
|
def has_permission(self, request, view): |
|
|
|
def has_permission(self, request, view): |
|
|
|
return request.user.is_authenticated and ( |
|
|
|
return request.user.is_authenticated and ( |
|
|
|
request.user.role in [ |
|
|
|
request.user.role >= User.AUTHOR_ROLE or |
|
|
|
User.AUTHOR_ROLE, User.ADMIN_ROLE |
|
|
|
request.user.is_staff or |
|
|
|
] or request.user.is_staff or request.user.is_superuser |
|
|
|
request.user.is_superuser |
|
|
|
) |
|
|
|
) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Ivlev Denis
8 years ago