def has_object_permission(self, request, view, obj):
# if request.method in permissions.SAFE_METHODS:
# return True
person = get_id_from_token(request)
if person['user_id'] == obj.pk:
return True
return False
def get(self, request, *args, **kwargs):
obj = list(User.objects.filter(pk=get_id_from_token(request)))[0]
info = {
'is_lecture': obj.is_lecture,
'is_student': obj.is_student,
'is_admin': obj.is_superuser,
'first_name': obj.first_name,
'last_name': obj.last_name
}
return Response(info, status=status.HTTP_200_OK)
def has_object_permission(self, request, view, obj):
person_id = get_id_from_token(request)
user = list(User.objects.filter(pk=person_id))[0]
if user.is_superuser or user.is_staff:
return True
return False
def get(self, request, *args, **kwargs):
obj = self.get_object_filter(get_id_from_token(request))
if obj is None:
return Response(None, status=status.HTTP_204_NO_CONTENT)
result = [PartGroupSerializer(elem).data for elem in obj.groups_list.all()]
return Response(result, status=status.HTTP_200_OK)