Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[#912] Object level permissions #927

Merged
merged 8 commits into from
Nov 26, 2014
Merged

Conversation

KasperBrandt
Copy link
Contributor

Implemented object level permissions based on django-rules:

  • A rule based system (rules defined in permissions.py).
  • Auth.group is now linked to rsr.Employment.
  • A new field on User level, 'is_admin', for general RSR admins aka Akvo employees.
  • Four new Groups: Admins, User managers, Project editors and Users.
  • The admin corresponds to the permissions, showing only the models and objects that a user can add or edit.
  • Changed the MyRSR page so that a user can select a Group for every Employment (but only if allowed).
  • Updated the REST API to work with object level permissions.
  • Updated signals.py for updating users when their Employment is adjusted or created and cleaned up old permissions.
  • Added dismissable alerts and better error messages in MyRSR.
  • Added object based permissions on My Projects page.

A new object level permissions system is now in place, which contains:
- A rule based system (rules defined in permissions.py)
- Auth.group is now linked to rsr.Employment
- A new field on User level, 'is_admin', for general RSR admins aka Akvo employees
- Four new Groups: Admins, User managers, Project editors and Users
- The admin corresponds to the permissions, showing only the models and objects that a user can add or edit
Changed the MyRSR page so that a user can select a Group for every Employment (but only if allowed).
The API now also checks if a user is allowed to change that particular employment.
Updated the REST API to work with object level permissions. Also made updates to MyRSR to set any Group, updated signals.py for updating users when their Employment is adjusted or created and cleaned up old permissions.
@kardan
Copy link
Contributor

kardan commented Nov 26, 2014

kardan added a commit that referenced this pull request Nov 26, 2014
@kardan kardan merged commit 628d4b9 into feature/rsr_v3 Nov 26, 2014
@kardan kardan deleted the feature/912_v3_rules branch November 26, 2014 13:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
Archived in project
Development

Successfully merging this pull request may close these issues.

2 participants