Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix permission issues #155

Open
wants to merge 7 commits into
base: dev
Choose a base branch
from
Open

Fix permission issues #155

wants to merge 7 commits into from

Conversation

yld-weng
Copy link
Collaborator

This PR primarily addresses permission issues and includes some basic documentation.

Related issues: #93, #78, and #102 (fixed).

yld-weng
yld-weng commented Feb 24, 2025
View reviewed changes
home/services/project.py
"""Get user's highest role across project's organisations"""
"""
Get user's highest role across project's organisations
TODO: this assuming a project can be linked to multiple organisations, check if still the case
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this still true?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@yld-weng Thanks for this Yuliang. From my understanding, a project should only be linked to one org. But the PI (and their team) should have access to all projects/orgs who agree to share their data with us.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also just to clarify - all managers in a given organisation should have access to all of the org's projects.

yld-weng
yld-weng commented Feb 24, 2025
View reviewed changes
home/services/project.py
@@ -63,7 +66,7 @@ def can_edit(self, user: User, project: Project) -> bool:
if role == ROLE_ADMIN:
return True
elif role == ROLE_PROJECT_MANAGER:
permission = self.get_user_permission(project, user)
permission = self.get_user_permission(user, project)
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fix for #102.

f-allian
f-allian approved these changes Feb 27, 2025
View reviewed changes
Copy link
Member

@f-allian f-allian left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@yld-weng Apart from my comment above re. the PI's admin access, everything else looks good. Thanks

@f-allian f-allian added the enhancement New feature or request label Feb 27, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@f-allian f-allian f-allian approved these changes

@twinkarma twinkarma Awaiting requested review from twinkarma

Assignees

@yld-weng yld-weng

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@yld-weng @f-allian