lkva/NDOJ
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add permission to org pages

Browse source
This commit is contained in:
cuom1999 2022-05-27 23:33:00 -05:00
parent 82ec9e098d
commit cae65de1d5
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
judge/views/organization.py
View file

@ -83,6 +83,13 @@ class OrganizationBase(object):
self.request.profile in org if self.request.user.is_authenticated else False
)
def can_access(self, org):
if self.request.user.is_superuser:
return True
if org is None:
org = self.object
return self.is_member(org) or self.can_edit_organization(org)
class OrganizationMixin(OrganizationBase):
context_object_name = "organization"
@ -287,6 +294,8 @@ class OrganizationProblems(ProblemList, OrganizationExternalMixin):
ret = super().get_organization_from_url(request, *args, **kwargs)
if ret:
return ret
if not self.can_access(self.organization):
return HttpResponseBadRequest()
self.setup_problem_list(request)
return super().get(request, *args, **kwargs)
@ -308,6 +317,8 @@ class OrganizationContests(ContestList, OrganizationExternalMixin):
ret = super().get_organization_from_url(request, *args, **kwargs)
if ret:
return ret
if not self.can_access(self.organization):
return HttpResponseBadRequest()
return super().get(request, *args, **kwargs)
def get_context_data(self, **kwargs):