Skip to content

permissions

CanEditReport

Bases: BasePermission

Custom permission to only allow owners of an object to edit it.

Source code in backend/reports/permissions.py 
18
19
20
21
22
23
24
25
26
27
class CanEditReport(permissions.BasePermission):
    """
    Custom permission to only allow owners of an object to edit it.
    """

    def has_permission(self, request, view):
        return request.user and request.user.is_authenticated

    def has_object_permission(self, request, view, obj: Report):
        return obj.can_edit(request.user)

CanViewReport

Bases: BasePermission

Custom permission to only allow owners of an object to edit it.

Source code in backend/reports/permissions.py 
 6
 7
 8
 9
10
11
12
13
14
15
class CanViewReport(permissions.BasePermission):
    """
    Custom permission to only allow owners of an object to edit it.
    """

    def has_permission(self, request, view):
        return request.user and request.user.is_authenticated

    def has_object_permission(self, request, view, obj: Report):
        return obj.can_view(request.user)