def get_queryset(self): ''' 当前用户只能看到自己创建和已公开的密码 ''' perms = RbacPermission.get_permission_from_role(self.request) if 'admin' in perms: return self.queryset.all() else: return self.queryset.filter( Q(uid_id=self.request.user.id) | Q(is_public=True))
def get_queryset(self): ''' 只有项目组成员才能看到项目 ''' perms = RbacPermission.get_permission_from_role(self.request) if 'admin' in perms or 'project_all' in perms: return self.queryset.all() else: uid = str(self.request.user.id) result = self.queryset.filter( Q(user_id__icontains=uid + ',') | Q(user_id__in=uid) | Q(user_id__endswith=',' + uid)) return result