0001-manager-add-permissions-based-access-to-global-journ.patch
src/authentic2/manager/journal_views.py | ||
---|---|---|
129 | 129 |
return ctx |
130 | 130 | |
131 | 131 | |
132 |
class GlobalJournalView(BaseJournalView): |
|
132 |
class GlobalJournalView(views.PermissionMixin, BaseJournalView):
|
|
133 | 133 |
template_name = 'authentic2/manager/journal.html' |
134 | ||
135 |
def dispatch(self, request, *args, **kwargs): |
|
136 |
if not request.user.is_superuser: |
|
137 |
raise PermissionDenied |
|
138 |
return super().dispatch(request, *args, **kwargs) |
|
134 |
permissions_global = True |
|
135 |
permissions = ['custom_user.view_user', 'a2_rbac.view_role'] |
|
139 | 136 | |
140 | 137 | |
141 | 138 |
journal = GlobalJournalView.as_view() |
tests/test_manager_journal.py | ||
---|---|---|
964 | 964 |
'addition of user "user (111111)" as administrator of role "role1"', |
965 | 965 |
'removal of role "role2" as administrator of role "role1"', |
966 | 966 |
] |
967 | ||
968 | ||
969 |
def test_global_journal_permission_denied(app, simple_user, events): |
|
970 |
response = login(app, user=simple_user) |
|
971 |
response = app.get('/manage/journal/', status=403) |
|
967 |
- |