def get_queryset(self):
'''
当前用户只能看到自己创建和已公开的密码
'''
perms = RbacPermission.get_permission_from_role(self.request)
if 'admin' in perms:
return self.queryset.all()
else:
return self.queryset.filter(
Q(uid_id=self.request.user.id) | Q(is_public=True))
def get_queryset(self):
'''
只有项目组成员才能看到项目
'''
perms = RbacPermission.get_permission_from_role(self.request)
if 'admin' in perms or 'project_all' in perms:
return self.queryset.all()
else:
uid = str(self.request.user.id)
result = self.queryset.filter(
Q(user_id__icontains=uid + ',') | Q(user_id__in=uid) | Q(user_id__endswith=',' + uid))
return result