def post(self, request, *args, **kwargs): if not request.user.is_authenticated: return HttpResponseForbidden() application = Application.objects.get(id=self.get_object().id) notification = Notification( recipient=application.candidate.user, entity_type=Notification.ENTITY_TYPE_APPLICATION_REVIEWED, entity_fk_pk=application.id, ) if "accept_button" in self.request.POST: application.status = "AC" notification.entity_type = Notification.ENTITY_TYPE_APPLICATION_ADVANCED elif "reject_button" in self.request.POST: application.status = "RE" notification.entity_type = Notification.ENTITY_TYPE_APPLICATION_REJECTED application.save() notification.save() return super().post(request, *args, **kwargs)