def post(data): # TODO Add protection against insufficient permissions if DepartmentModel.find() is None: department = DepartmentModel() department.add_role("department") department.save()