Skip to content
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
60 changes: 50 additions & 10 deletions backend/backend/admin.py
Original file line number Diff line number Diff line change
Expand Up @@ -57,6 +57,10 @@ def has_view_permission(self, request, obj=None):
return False
if obj is None:
return True
if not hasattr(obj, "_meta"):
obj = self.get_object(request, obj)
if obj is None:
return False
return self.get_object_team_id(obj) in self._get_appointer_team_ids(
request.user
)
Expand All @@ -83,6 +87,12 @@ def get_queryset(self, request):

return queryset.filter(**self.get_team_filter(team_ids)).distinct()

def delete_queryset(self, request, queryset):
pk_list = list(queryset.values_list("pk", flat=True))
if not pk_list:
return
self.model._default_manager.filter(pk__in=pk_list).delete()


@admin.register(Group)
class GroupAdmin(BaseGroupAdmin, ModelAdmin):
Expand Down Expand Up @@ -220,6 +230,45 @@ def formfield_for_foreignkey(self, db_field, request, **kwargs):
kwargs["queryset"] = Role.objects.filter(team_id__in=team_ids)
return super().formfield_for_foreignkey(db_field, request, **kwargs)

class ReferenceInline(admin.TabularInline):
model = Reference
extra = 0
readonly_fields = ("name", "phone_num", "title", "email", "comment")
can_delete = False

def _get_appointer_team_ids(self, user):
if not user or not user.is_authenticated or user.is_superuser:
return []

if hasattr(user, "get_appointer_team_ids"):
return user.get_appointer_team_ids()

return []

def _has_application_scope(self, request, obj=None):
if request.user.is_superuser:
return True

team_ids = self._get_appointer_team_ids(request.user)
if not team_ids:
return False

if obj is None:
return True

return obj.position.role.team_id in team_ids

def has_view_permission(self, request, obj=None):
return self._has_application_scope(request, obj)

def has_change_permission(self, request, obj=None):
return self._has_application_scope(request, obj)

def has_delete_permission(self, request, obj=None):
return self._has_application_scope(request, obj)

def has_add_permission(self, request, _obj=None):
return False

@admin.register(Application)
class ApplicationAdmin(AppointerTeamScopeMixin, ModelAdmin):
Expand All @@ -232,6 +281,7 @@ class ApplicationAdmin(AppointerTeamScopeMixin, ModelAdmin):
"member__email",
)
list_filter_submit = True
inlines = [ReferenceInline]
actions_row = ("appoint_application", "turn_down_application")
actions_detail = ("appoint_application", "turn_down_application")

Expand Down Expand Up @@ -314,16 +364,6 @@ def formfield_for_foreignkey(self, db_field, request, **kwargs):
def has_add_permission(self, request):
return False


@admin.register(Reference)
class ReferenceAdmin(ModelAdmin):
list_display = ("name", "application", "email", "phone_num", "title")
search_fields = ("name", "email", "application__member__name")
list_filter_submit = True

def has_add_permission(self, request):
return False

class StudyProgramInline(admin.TabularInline):
model = StudyProgram
extra = 1
Expand Down
Loading