xuyue/OnlineJudge
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test for csrf

Browse Source
This commit is contained in:
yuetsh
2025-06-15 10:42:28 +08:00
parent c655ba6991
commit d4409ab595
5 changed files with 134 additions and 118 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
tutorial/views/admin.py
View File

@@ -1,17 +1,17 @@
from rest_framework import viewsets, permissions
from account.decorators import super_admin_required
from ..models import Tutorial
from ..serializers import TutorialSerializer
class IsSuperAdminUser(permissions.BasePermission):
def has_permission(self, request, view):
return bool(request.user and request.user.is_super_admin())
class AdminTutorialViewSet(viewsets.ModelViewSet):
queryset = Tutorial.objects.all()
serializer_class = TutorialSerializer
permission_classes = [permissions.IsAuthenticated]
def get_permissions(self):
if self.action in ['create', 'update', 'partial_update', 'destroy']:
return [super_admin_required()]
return [permissions.AllowAny()]
permission_classes = [IsSuperAdminUser]
def perform_create(self, serializer):
serializer.save(created_by=self.request.user)