sartography/spiff-arena
1
0
Fork 0
mirror of https://github.com/sartography/spiff-arena.git synced 2025-03-01 09:30:46 +00:00
Code Issues Packages Projects Releases Wiki Activity

use a better var name to check perms against w/ burnettk

Browse Source
This commit is contained in:
jasquat 2023-05-08 14:25:49 -04:00
parent f10036ce4a
commit d9db268085
No known key found for this signature in database
1 changed files with 9 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
spiffworkflow-backend/src/spiffworkflow_backend/services/process_model_service.py
View File

@ -2,6 +2,7 @@
import json import json
import os import os
import shutil import shutil
import uuid
from glob import glob from glob import glob
from typing import Any from typing import Any
from typing import List from typing import List
@ -222,8 +223,11 @@ class ProcessModelService(FileSystemService):
permission_base_uri = "/v1.0/process-instances" permission_base_uri = "/v1.0/process-instances"
# if user has access to uri/* with that permission then there's no reason to check each one individually # if user has access to uri/* with that permission then there's no reason to check each one individually
guid_of_non_existent_item_to_check_perms_against = str(uuid.uuid4())
has_permission = AuthorizationService.user_has_permission( has_permission = AuthorizationService.user_has_permission(
user=user, permission=permission_to_check, target_uri=f"{permission_base_uri}/%" user=user,
permission=permission_to_check,
target_uri=f"{permission_base_uri}/{guid_of_non_existent_item_to_check_perms_against}",
) )
if has_permission: if has_permission:
return process_models return process_models
@ -286,8 +290,11 @@ class ProcessModelService(FileSystemService):
user = UserService.current_user() user = UserService.current_user()
# if user has access to uri/* with that permission then there's no reason to check each one individually # if user has access to uri/* with that permission then there's no reason to check each one individually
guid_of_non_existent_item_to_check_perms_against = str(uuid.uuid4())
has_permission = AuthorizationService.user_has_permission( has_permission = AuthorizationService.user_has_permission(
user=user, permission=permission_to_check, target_uri=f"{permission_base_uri}/%" user=user,
permission=permission_to_check,
target_uri=f"{permission_base_uri}/{guid_of_non_existent_item_to_check_perms_against}",
) )
if has_permission: if has_permission:
return process_groups return process_groups