Start of projects (+teams/credentials/permissions) tests.

2026-01-10 15:32:07 -03:30 · 2013-03-31 20:02:56 -04:00 · 2013-03-31 20:02:56 -04:00 · 33ab8ff1ab
commit 33ab8ff1ab
parent 3c7cac00f9
4 changed files with 31 additions and 2 deletions
--- a/lib/main/models/init.py
+++ b/lib/main/models/init.py
@ -542,6 +542,8 @@ class Project(CommonModel):
        return False


+
+
 class Permission(CommonModelNameNotUnique):
    '''
    A permission allows a user, project, or team to be able to use an inventory source.
--- a/lib/main/tests/init.py
+++ b/lib/main/tests/init.py
@ -19,5 +19,6 @@
 from lib.main.tests.organizations import OrganizationsTest
 from lib.main.tests.users import UsersTest
 from lib.main.tests.inventory import InventoryTest
+from lib.main.tests.projects import ProjectsTest
 from lib.main.tests.commands import AcomInventoryTest
 from lib.main.tests.tasks import RunLaunchJobTest
--- a/lib/main/views.py
+++ b/lib/main/views.py
@ -146,6 +146,30 @@ class OrganizationsTagsList(BaseSubList):
            raise PermissionDenied()
        return Tag.objects.filter(organization_by_tag__in = [ organization ])

+class ProjectsList(BaseList):
+
+    model = Project
+    serializer_class = ProjectSerializer
+    permission_classes = (CustomRbac,)
+
+    # I can see a project if
+    #   I am a superuser
+    #   I am an admin of the organization that contains the project
+    #   I am a member of a team that also contains the project
+   
+    def _get_queryset(self):
+        ''' I can see organizations when I am a superuser, or I am an admin or user in that organization '''
+        base = Project.objects
+        if self.request.user.is_superuser:
+            return base.all()
+        my_teams = Team.objects.filter(users__in = [ self.request.user])
+        my_orgs  = Organization.objects.filter(admins__in = [ self.request.user ])
+        return base.filter(
+            teams__in = my_teams
+        ).distinct() | base.filter(
+            organizations__in = my_orgs
+        ).distinct()
+
 class ProjectsDetail(BaseDetail):

    model = Project
--- a/lib/urls.py
+++ b/lib/urls.py
@ -37,7 +37,8 @@ views_UsersOrganizationsList       = views.UsersOrganizationsList.as_view()
 views_UsersAdminOrganizationsList  = views.UsersAdminOrganizationsList.as_view()

 # projects service
-views_ProjectsDetail               = views.OrganizationsDetail.as_view()
+views_ProjectsList                 = views.ProjectsList.as_view()
+views_ProjectsDetail               = views.ProjectsDetail.as_view()

 # audit trail service

@ -75,7 +76,7 @@ views_TagsDetail                   = views.TagsDetail.as_view()

 urlpatterns = patterns('',

-    # organizations service
+    # organizations vice
    url(r'^api/v1/organizations/$',                               views_OrganizationsList),
    url(r'^api/v1/organizations/(?P<pk>[0-9]+)/$',                views_OrganizationsDetail),
    url(r'^api/v1/organizations/(?P<pk>[0-9]+)/audit_trail/$',    views_OrganizationsAuditTrailList),
@ -93,6 +94,7 @@ urlpatterns = patterns('',
    url(r'^api/v1/users/(?P<pk>[0-9]+)/admin_of_organizations/$', views_UsersAdminOrganizationsList),

    # projects service
+    url(r'^api/v1/projects/$',                                    views_ProjectsList),
    url(r'^api/v1/projects/(?P<pk>[0-9]+)/$',                     views_ProjectsDetail),
    
    # audit trail service