feat(development): Add function to filter permissions to those used by centurion

ref: #244 #164
2024-08-17 15:16:34 +09:30
parent d778cd0e83
commit e472022c91
3 changed files with 51 additions and 38 deletions
--- a/app/access/forms/team.py
+++ b/app/access/forms/team.py
@ -1,13 +1,13 @@
 from django import forms
 from django.contrib.auth.models import Permission
 from django.db.models import Q
 from django.forms import inlineformset_factory
 from app import settings
 from .team_users import TeamUsersForm, TeamUsers
 from access.models import Team
 from access.functions import permissions
 from app import settings
 from core.forms.common import CommonModelForm
@ -66,38 +66,4 @@ class TeamForm(CommonModelForm):
        self.fields['permissions'].widget.attrs = {'style': "height: 200px;"}
-        apps = [
+        self.fields['permissions'].queryset = permissions.permission_queryset()
            'access',
            'assistance',
            'config_management',
            'core',
            'django_celery_results',
            'itam',
            'settings',
        ]
        exclude_models = [
            'appsettings',
            'chordcounter',
            'groupresult',
            'organization'
            'settings',
            'usersettings',
        ]
        exclude_permissions = [
            'add_organization',
            'add_taskresult',
            'change_organization',
            'change_taskresult',
            'delete_organization',
            'delete_taskresult',
        ]
        self.fields['permissions'].queryset = Permission.objects.filter(
            content_type__app_label__in=apps,
        ).exclude(
            content_type__model__in=exclude_models
        ).exclude(
            codename__in = exclude_permissions
        )
--- a/app/access/functions/permissions.py
+++ b/app/access/functions/permissions.py
@ -0,0 +1,45 @@
 from django.contrib.auth.models import Permission
 def permission_queryset():
    """Filter Permissions to those used within the application
    Returns:
        list: Filtered queryset that only contains the used permissions
    """
    apps = [
        'access',
        'assistance',
        'config_management',
        'core',
        'django_celery_results',
        'itam',
        'itim',
        'settings',
    ]
    exclude_models = [
        'appsettings',
        'chordcounter',
        'groupresult',
        'organization'
        'settings',
        'usersettings',
    ]
    exclude_permissions = [
        'add_organization',
        'add_taskresult',
        'change_organization',
        'change_taskresult',
        'delete_organization',
        'delete_taskresult',
    ]
    return Permission.objects.filter(
            content_type__app_label__in=apps,
        ).exclude(
            content_type__model__in=exclude_models
        ).exclude(
            codename__in = exclude_permissions
        )
--- a/docs/projects/centurion_erp/development/models.md
+++ b/docs/projects/centurion_erp/development/models.md
@ -42,6 +42,8 @@ All models must meet the following requirements:
    - `verbose_name_plural`
 - If creating a new model, function `access.functions.permissions.permission_queryset()` has been updated to display the models permission(s)
 ## History