Smoke and permissions tests
And various bug / permissions config tweaks to accompany
This commit is contained in:
Scot Hacker
parent
0d7a933d1c
commit
f4d1da0ab7
7 changed files with 161 additions and 49 deletions
|
|
@ -1,28 +1,13 @@
|
|||
import datetime
|
||||
|
||||
from django.conf import settings
|
||||
from django.contrib import messages
|
||||
from django.contrib.auth.models import User
|
||||
from django.contrib.sites.models import Site
|
||||
from django.core.mail import send_mail
|
||||
from django.http import HttpResponse
|
||||
from django.template.loader import render_to_string
|
||||
|
||||
from todo.models import Item, Comment
|
||||
|
||||
|
||||
def check_user_allowed(user: User) -> HttpResponse:
|
||||
"""
|
||||
Verifies user is logged in, and in staff if that setting is enabled.
|
||||
Per-object permission checks (e.g. to view a particular list) are in the views that handle those objects.
|
||||
"""
|
||||
|
||||
if hasattr(settings, "STAFF_ONLY") and getattr(settings, "STAFF_ONLY"):
|
||||
return user.is_authenticated and user.is_staff
|
||||
else:
|
||||
return user.is_authenticated
|
||||
|
||||
|
||||
def toggle_done(request, items):
|
||||
"""Check for items in the mark_done POST array. If present, change status to complete.
|
||||
Takes a list of task IDs. No return value.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue