Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

set up groups and permissions #67

Draft
wants to merge 5 commits into
base: main
Choose a base branch
from
Draft

set up groups and permissions #67

wants to merge 5 commits into from

Conversation

fricklerhandwerk
Copy link
Collaborator

No description provided.

@fricklerhandwerk
fix: use minimal padding for shortcode
0beb842
@fricklerhandwerk
feat: add knownVulnerabilities to derivation metadata
8a0b156 
the CVE container was misplaced on the issue data model.

this change also adds lots of convenience for the admin backend, because
currently maintainer data is not ingested from the evaluation dump.
@fricklerhandwerk fricklerhandwerk marked this pull request as draft December 7, 2023 00:34
@fricklerhandwerk
feat: display maintainers and vulns per package
665c7ca
@fricklerhandwerk
feat: ensure groups are available after migration
3b8a24c
@fricklerhandwerk
feat: set up django-permission2
c9c0d09 
also refactor the Nix setup, which didn't actually work:
the overlay packages did not end up in the final package set. now they are.
RaitoBezarius
RaitoBezarius reviewed Dec 7, 2023
View reviewed changes
src/website/webview/apps.py
def ensure_groups(sender, **kwargs):
from django.contrib.auth.models import Group

secteam, created = Group.objects.get_or_create(name="Security team")
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why do we make dynamic groups? This feel overly complicated? All our groups are statically known: superadmins, security team, committers, maintainers, viewers. Do you want to bring more groups than those?

RaitoBezarius
RaitoBezarius requested changes Dec 7, 2023
View reviewed changes
Copy link
Collaborator

@RaitoBezarius RaitoBezarius left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am quite meh about the packaging changes for Python (I spent some time on fixing the mess that was happening out there.) and I do not understand the need of the extra dependency.

@RaitoBezarius
Copy link
Collaborator

Ah I think I fucked up my commits and the missing commit for you is here: 67dd36d.

@RaitoBezarius
Copy link
Collaborator

The important part for permissions will be the REST API we will build, we have https://www.django-rest-framework.org/api-guide/permissions/ for that.

@RaitoBezarius
Copy link
Collaborator

For views, we already have the built-in system in https://docs.djangoproject.com/en/5.0/topics/auth/default/#permissions-and-authorization.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@RaitoBezarius RaitoBezarius RaitoBezarius requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@fricklerhandwerk @RaitoBezarius