matthias/mayan-edms
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Improve document comment app

Browse Source 
Add keyword arguments to URL definitions and reverse resolution.
Raise HTTP error 404 instead of 403 to reduce the information
divulged. Add view tests.

Signed-off-by: Roberto Rosario <Roberto.Rosario@mayan-edms.com>
This commit is contained in:
Roberto Rosario
2018-12-30 02:24:25 -04:00
parent 82651ff32c
commit cd9d51db9e
8 changed files with 203 additions and 78 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
mayan/apps/document_comments/api_views.py
View File

@@ -25,7 +25,9 @@ class APICommentListView(generics.ListCreateAPIView):
else:
permission_required = permission_comment_create
document = get_object_or_404(klass=Document, pk=self.kwargs['document_pk'])
document = get_object_or_404(
klass=Document, pk=self.kwargs['document_pk']
)
AccessControlList.objects.check_access(
permissions=permission_required, user=self.request.user,
@@ -78,7 +80,9 @@ class APICommentView(generics.RetrieveDestroyAPIView):
else:
permission_required = permission_comment_delete
document = get_object_or_404(klass=Document, pk=self.kwargs['document_pk'])
document = get_object_or_404(
klass=Document, pk=self.kwargs['document_pk']
)
AccessControlList.objects.check_access(
permissions=permission_required, user=self.request.user,