def update(id): entity = object_or_404(Entity.by_id(id)) authz.require(authz.project_edit(entity.project)) data = request_data({'author': request.account}) entity = entities.save(data, entity=entity) db.session.commit() return jsonify(entities.to_rest(entity))
def create(): data = request_data({'author': request.account}) project = ProjectRef().get(data.get('project')) data['project'] = project authz.require(authz.project_edit(project)) entity = entities.save(data) db.session.commit() return jsonify(entities.to_rest(entity))
def view(id): entity = object_or_404(Entity.by_id(id)) authz.require(authz.project_read(entity.project)) return jsonify(entities.to_rest(entity))
def view(id): entity = object_or_404(Entity.by_id(id)) return jsonify(entities.to_rest(entity))