52 |
52 |
53 rights = access.Checker(params) |
53 rights = access.Checker(params) |
54 rights['create'] = ['checkIsDeveloper'] |
54 rights['create'] = ['checkIsDeveloper'] |
55 rights['edit'] = [('checkHasActiveRoleForScope', soc.logic.models.mentor.logic)] |
55 rights['edit'] = [('checkHasActiveRoleForScope', soc.logic.models.mentor.logic)] |
56 rights['delete'] = ['checkIsDeveloper'] |
56 rights['delete'] = ['checkIsDeveloper'] |
57 # TODO accessCheck checkIsAdministratorForOrg |
57 rights['invite'] = [('checkHasActiveRoleForScope', |
58 rights['invite'] = ['checkIsDeveloper'] |
58 soc.logic.models.org_admin.logic)] |
59 rights['accept_invite'] = [('checkCanCreateFromRequest', 'mentor'), |
59 rights['accept_invite'] = [('checkCanCreateFromRequest', 'mentor'), |
60 'checkIsNotStudentForProgramOfOrg'] |
60 'checkIsNotStudentForProgramOfOrg'] |
61 # TODO accessCheck checkIsAdministratorForOrg |
61 rights['request'] = ['checkIsNotStudentForProgramOfOrg', |
62 rights['process_request'] = ['checkIsDeveloper', |
62 ('checkCanMakeRequestToGroup', org_logic)] |
|
63 rights['process_request'] = [ |
|
64 ('checkHasActiveRoleForScope', soc.logic.models.org_admin.logic), |
63 ('checkCanProcessRequest', 'mentor')] |
65 ('checkCanProcessRequest', 'mentor')] |
64 rights['manage'] = [ |
66 rights['manage'] = [ |
65 ('checkIsAllowedToManageRole', [soc.logic.models.mentor.logic, |
67 ('checkIsAllowedToManageRole', [soc.logic.models.mentor.logic, |
66 soc.logic.models.org_admin.logic])] |
68 soc.logic.models.org_admin.logic])] |
67 |
69 |