Add group members view with permission checks #30
Conversation
… checks. - Implement `group_members_view` to display members of a research group based on the `GroupMember` model. - Added permission checks to allow access only for the group owner or an admin. - Included check for PI (Principal Investigator) status to ensure group ownership. - Render `group_members.html` for authorised users; display `no_group.html` with a message for non-PI users.
HarmonicReflux
changed the title
Ruff required docstring and permissions…
HarmonicReflux
added
backend
|
Based on our session yesterday you're hopefully now able to try this out in the browser @HarmonicReflux? |
# Conflicts: # imperial_coldfront_plugin/urls.py
|
I am getting closer @cc-a , but encounter this error int eh CI/CD tests: I import |
|
I've taken the liberty of pushing a couple of commits. The first addresses the issue you reported by updating the settings used during tests to include the I then hit a subsequent issue with mypy that I was unable to resolve. I'm going to create a follow up issue to look into how to deal with these mypy issues properly but have disabled the mypy checks for now. Maybe I'm just missing something but I'm increasingly dubious of the merits of using mypy with Django. |
|
Thanks for this. Well, as per out discussions in person and online, maybe its best to deactivate It is certainly worth looking into it in more detail so we have a good assessment of the technical debt we incur switching |
|
A question: Is a new file generated in the |
Yes, if there are changes to the models then we need to make migrations, which are then saved in |
|
@AdrianDAlessandro Unfortunately you'll have to type the url in manually. Until we get #21 there is nowhere obvious to put the link. |
I went to |
|
@AdrianDAlessandro I think you need to go to |
There was a problem hiding this comment.
Ok, I managed to work out I need to navigate to http://127.0.0.1:8000/icl/group/1/members/ and it worked for when I wasn't a PI. But after setting is_pi to True it failed with this error (I believe the same error mypy was showing):
...
File "/usr/src/imperial_coldfront_plugin/imperial_coldfront_plugin/views.py", line 51, in group_members_view
group_members = GroupMembership.objects.filter(owner=user)
...
FieldError at /icl/group/1/members/
Cannot resolve keyword 'owner' into field. Choices are: group, group_id, id, member, member_id
|
|
||
| from .models import GroupMembership | ||
|
|
||
| User = get_user_model() |
There was a problem hiding this comment.
This feels wrong... Shouldn't we be using get_user_model() directly each time?
| if request.user != user and not request.user.is_superuser: | ||
| return HttpResponseForbidden("Permission denied") |
There was a problem hiding this comment.
Why can only superusers can view this?
| if request.user != user and not request.user.is_superuser: | ||
| return HttpResponseForbidden("Permission denied") | ||
|
|
||
| if not user.userprofile.is_pi: |
There was a problem hiding this comment.
Is this userprofile a field provided by coldfront?
Description
group_members_viewto display members of a research group based on theGroupMembermodel.group_members.htmlfor authorised users; displayno_group.htmlwith a message for non-PI users.Fixes #18, #34.
Type of change
Key checklist
python -m pytest)python -m sphinx -b html docs docs/build)pre-commit run --all-files)Further checks