Beispiel #1
0
    def get_queryset(self):
        request = self.context["request"]
        queryset = Team.objects.filter(deleted=False)
        if not has_full_access_scope(request):
            queryset = queryset.filter(group__in=request.user.groups.all())

        return queryset
Beispiel #2
0
    def get_queryset(self):
        request = self.context["request"]
        queryset = Project.objects.filter(team__deleted=False, deleted=False)
        if not has_full_access_scope(request):
            queryset = queryset.filter(team__in=get_teams(request.user))

        return queryset
Beispiel #3
0
    def get_queryset(self):
        request = self.context["request"]
        queryset = Team.objects.filter(deleted=False)
        if not has_full_access_scope(request):
            queryset = queryset & get_teams(
                request.user)  # get intersection of querysets

        return queryset
Beispiel #4
0
    def get_queryset(self):
        # do not call super().get_queryset() since it raises NotImplementedError
        queryset = self.model.objects.all()
        if self.request.katka_auth_type is AuthType.SCOPES:
            if has_full_access_scope(self.request):
                return queryset

            raise PermissionDenied("Missing full access scope")

        return self.get_user_restricted_queryset(queryset)
Beispiel #5
0
    def get_queryset(self):
        request = self.context["request"]
        queryset = Application.objects.filter(
            project__team__deleted=False,
            project__deleted=False,
            deleted=False,
        )
        if not has_full_access_scope(request):
            queryset = queryset.filter(
                project__team__group__in=request.user.groups.all())

        return queryset
Beispiel #6
0
    def validate_group(self, group):
        if has_full_access_scope(self.context["request"]):
            querystring = Group.objects
        else:
            querystring = self.context["request"].user.groups

        querystring = querystring.filter(name=group.name)
        if not querystring.exists():
            raise PermissionDenied(
                "Group does not exist or user is not a member of this group")

        return group
Beispiel #7
0
    def get_queryset(self):
        request = self.context["request"]
        queryset = SCMPipelineRun.objects.filter(
            application__project__team__deleted=False,
            application__project__deleted=False,
            application__deleted=False,
            deleted=False,
        )
        if not has_full_access_scope(request):
            queryset = queryset.filter(
                application__project__team__in=get_teams(request.user))

        return queryset