def update(self, request, *args, **kwargs):
if request.data is None:
return rc.BAD_REQUEST
pkfield = kwargs.get(self.model._meta.pk.name) or request.data.get(
self.model._meta.pk.name)
if not pkfield:
return rc.BAD_REQUEST
item = getOrNone(self.model, pkfield)
if not item:
return rc.NOT_FOUND
if not request.user.profile.has_permission(item, mode="w"):
return rc.FORBIDDEN
attrs = self.flatten_dict(request)
form = ItemForm(item_type=item.item_type, instance=item, **attrs)
if form.is_valid():
item = form.save(request)
return item
else:
self.status = 400
return form.errors
def update(self, request, *args, **kwargs):
if request.data is None:
return rc.BAD_REQUEST
pkfield = kwargs.get(self.model._meta.pk.name) or request.data.get(
self.model._meta.pk.name)
if not pkfield:
return rc.BAD_REQUEST
item = getOrNone(self.model, pkfield)
if not item:
return rc.NOT_FOUND
if not request.user.profile.has_permission(item, mode="w"):
return rc.FORBIDDEN
attrs = self.flatten_dict(request)
form = ItemForm(item_type=item.item_type, instance=item, **attrs)
if form.is_valid():
item = form.save(request)
return item
else:
self.status = 400
return form.errors
def create(self, request, *args, **kwargs):
if request.data is None:
return rc.BAD_REQUEST
item_type = getOrNone(ItemType, request.data.get('type'))
if not item_type or not request.user.profile.has_permission(item_type, mode='x'):
return rc.FORBIDDEN
attrs = self.flatten_dict(request)
form = ItemForm(item_type=item_type, **attrs)
if form.is_valid():
item = form.save(request)
return item
else:
self.status = 400
return form.errors
def create(self, request, *args, **kwargs):
if request.data is None:
return rc.BAD_REQUEST
item_type = getOrNone(ItemType, request.data.get('type'))
if not item_type or not request.user.profile.has_permission(item_type,
mode='x'):
return rc.FORBIDDEN
attrs = self.flatten_dict(request)
form = ItemForm(item_type=item_type, **attrs)
if form.is_valid():
item = form.save(request)
return item
else:
self.status = 400
return form.errors