CMS/cmsmanage
2
0
Fork 0
Code Issues 8 Pull Requests 4 Actions 3 Projects 1 Releases Activity

Use view permission for GET requests in DRF

Browse Source
This commit is contained in:
Adam Goldsmith 2022-12-24 14:21:25 -05:00
parent 245e946fc2
commit d1d7161fd7
2 changed files with 13 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
cmsmanage/drf_permissions.py Normal file
View File

@ -0,0 +1,10 @@
import copy
from rest_framework.permissions import DjangoModelPermissions
class DjangoModelPermissionsWithView(DjangoModelPermissions):
def __init__(self):
super().__init__()
self.perms_map = copy.deepcopy(self.perms_map)
self.perms_map["GET"] = ["%(app_label)s.view_%(model_name)s"]

4
cmsmanage/settings/base.py
View File

@ -100,7 +100,9 @@ WIKI_URL = "https://wiki.claremontmakerspace.org"
# Django Rest Framework # Django Rest Framework
REST_FRAMEWORK = { REST_FRAMEWORK = {
# Use Django's standard `django.contrib.auth` permissions # Use Django's standard `django.contrib.auth` permissions
"DEFAULT_PERMISSION_CLASSES": ["rest_framework.permissions.DjangoModelPermissions"], "DEFAULT_PERMISSION_CLASSES": [
"cmsmanage.drf_permissions.DjangoModelPermissionsWithView"
],
"DEFAULT_AUTHENTICATION_CLASSES": [ "DEFAULT_AUTHENTICATION_CLASSES": [
"rest_framework.authentication.SessionAuthentication", "rest_framework.authentication.SessionAuthentication",
"rest_framework.authentication.TokenAuthentication", "rest_framework.authentication.TokenAuthentication",