Actually this way may be cleaner

2025-04-02 13:45:10 -05:00 · 2025-03-13 22:25:35 -07:00 · 2025-03-13 22:25:35 -07:00 · b273af130f
commit b273af130f
parent 2f02142651
2 changed files with 67 additions and 69 deletions
--- a/src/documents/permissions.py
+++ b/src/documents/permissions.py
@ -70,6 +70,7 @@ def set_permissions_for_object(permissions: list[str], object, *, merge: bool =

    for action in permissions:
        permission = f"{action}_{object.__class__.__name__.lower()}"
+        if "users" in permissions[action]:
            # users
            users_to_add = User.objects.filter(id__in=permissions[action]["users"])
            users_to_remove = (
@ -96,6 +97,7 @@ def set_permissions_for_object(permissions: list[str], object, *, merge: bool =
                            user,
                            object,
                        )
+        if "groups" in permissions[action]:
            # groups
            groups_to_add = Group.objects.filter(id__in=permissions[action]["groups"])
            groups_to_remove = (
--- a/src/documents/serialisers.py
+++ b/src/documents/serialisers.py
@ -160,24 +160,24 @@ class SetPermissionsMixin:

    def validate_set_permissions(self, set_permissions=None):
        permissions_dict = {
-            "view": {
-                "users": User.objects.none(),
-                "groups": Group.objects.none(),
-            },
-            "change": {
-                "users": User.objects.none(),
-                "groups": Group.objects.none(),
-            },
+            "view": {},
+            "change": {},
        }
        if set_permissions is not None:
-            for action, _ in permissions_dict.items():
+            for action in ["view", "change"]:
                if action in set_permissions:
+                    if "users" in set_permissions[action]:
                        users = set_permissions[action]["users"]
-                    permissions_dict[action]["users"] = self._validate_user_ids(users)
+                        permissions_dict[action]["users"] = self._validate_user_ids(
+                            users,
+                        )
+                    if "groups" in set_permissions[action]:
                        groups = set_permissions[action]["groups"]
                        permissions_dict[action]["groups"] = self._validate_group_ids(
                            groups,
                        )
+                else:
+                    del permissions_dict[action]
        return permissions_dict

    def _set_permissions(self, permissions, object):
@ -226,11 +226,7 @@ class SerializerWithPerms(serializers.Serializer):
    },
 )
 class SetPermissionsSerializer(serializers.DictField):
-    def validate_empty_values(self, data: dict | None):
-        if data is fields.empty or (data is not None and len(data) == 0):
-            # allow empty but skip the field to prevent overwriting permissions
-            raise fields.SkipField
-        return super().validate_empty_values(data)
+    pass


 class OwnedObjectSerializer(