def has_object_permission(self, request, view, obj): # if request.method in permissions.SAFE_METHODS: # return True person = get_id_from_token(request) if person['user_id'] == obj.pk: return True return False
def get(self, request, *args, **kwargs): obj = list(User.objects.filter(pk=get_id_from_token(request)))[0] info = { 'is_lecture': obj.is_lecture, 'is_student': obj.is_student, 'is_admin': obj.is_superuser, 'first_name': obj.first_name, 'last_name': obj.last_name } return Response(info, status=status.HTTP_200_OK)
def has_object_permission(self, request, view, obj): person_id = get_id_from_token(request) user = list(User.objects.filter(pk=person_id))[0] if user.is_superuser or user.is_staff: return True return False
def get(self, request, *args, **kwargs): obj = self.get_object_filter(get_id_from_token(request)) if obj is None: return Response(None, status=status.HTTP_204_NO_CONTENT) result = [PartGroupSerializer(elem).data for elem in obj.groups_list.all()] return Response(result, status=status.HTTP_200_OK)