def post_comment(request, project_id): dct_return = { "status": "error", "data": "" } model_project = Project.objects.get(id=int(project_id)) if model_project.owner != request.user and not model_project.members.filter(user=request.user): dct_return["data"] = "Not authorized" return dct_return if request.method == "POST": form = CommentForm(request.POST) if form.is_valid(): comment = form.cleaned_data["comment"] ProjectComment.objects.create(proj=model_project, user=request.user, comment=comment) else: form = InvitationForm() dct_return["status"] = "success" dct_return["data"] = form.as_table() return dct_return