rattail/tailbone
2
0
Fork 0
Code Issues 2 Pull requests Projects Releases Packages Wiki Activity Actions

Refactor API views a bit for sake of running as separate service

Browse source 
also add "proper" (sic) permission checks
This commit is contained in:
Lance Edgar 2018-11-03 18:55:26 -05:00
parent 9b61b05155
commit fec8ba28e2
5 changed files with 35 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

12
tailbone/api/users.py
View file

@ -30,12 +30,12 @@ import six
from rattail.db import model
from cornice.resource import resource
from cornice.resource import resource, view
from tailbone.api import APIMasterView
@resource(collection_path='/api/users', path='/api/users/{uuid}')
@resource(collection_path='/users', path='/users/{uuid}')
class UserView(APIMasterView):
model_class = model.User
@ -46,6 +46,14 @@ class UserView(APIMasterView):
'person': six.text_type(user.person or ''),
}
@view(permission='users.list')
def collection_get(self):
return self._collection_get()
@view(permission='users.view')
def get(self):
return self._get()
def includeme(config):
config.scan(__name__)