This repository has been archived on 2026-03-24. You can view files and clone it. You cannot open issues or pull requests or push a commit.

Samuel Paccoud - DINUM 1fc3029d12 🐛(backend) fix dysfunctional permissions on document create ...

When creating a document access, users were benefitting on the targeted
document from the highest access right they have among all documents.
This is because we forgot to filter on the document ID when retrieving
the role of the user. We improved all tests to secure this issue.

2024-10-16 19:16:50 +02:00

..

__init__.py

🚨(backend) fix linting issues after upgrading

2024-08-20 18:06:02 +02:00

fields.py

🚨(backend) fix linting issues after upgrading

2024-08-20 18:06:02 +02:00

permissions.py

✨(models/api) add link access reach and role

2024-09-11 22:31:30 +02:00

serializers.py

🐛(backend) fix dysfunctional permissions on document create

2024-10-16 19:16:50 +02:00

utils.py

✨(backend) add url to download media attachments with access rights

2024-08-27 15:59:44 +02:00

viewsets.py

♻️(email) use full name instead of email

2024-10-16 09:36:33 +02:00