counterweight/arbret
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
arbret/backend/routes
History
counterweight 21698203fe
refactor(auth): unify authorization patterns with MANAGE_OWN_PROFILE permission 
Issue #2: The profile route used a custom role-based check instead
of the permission-based pattern used everywhere else.

Changes:
- Add MANAGE_OWN_PROFILE permission to backend Permission enum
- Add permission to ROLE_REGULAR role definition
- Update profile routes to use require_permission(MANAGE_OWN_PROFILE)
- Remove custom require_regular_user dependency
- Update frontend Permission constant and profile page
- Update invites page to use permission instead of role check
- Update profile tests with proper permission mocking

This ensures consistent authorization patterns across all routes.
2025-12-21 23:50:06 +01:00
..
__init__.py first implementation 2025-12-20 22:18:14 +01:00
audit.py Use explicit join in random-jobs endpoint to avoid potential N+1 query 2025-12-21 23:14:08 +01:00
auth.py Add ruff linter/formatter for Python 2025-12-21 21:54:26 +01:00
availability.py Add ruff linter/formatter for Python 2025-12-21 21:54:26 +01:00
booking.py fix pre-commit hook and code quality fixes 2025-12-21 22:14:48 +01:00
counter.py Phase 2: Job enqueueing from counter 2025-12-21 22:44:31 +01:00
invites.py Add ruff linter/formatter for Python 2025-12-21 21:54:26 +01:00
meta.py Add ruff linter/formatter for Python 2025-12-21 21:54:26 +01:00
profile.py refactor(auth): unify authorization patterns with MANAGE_OWN_PROFILE permission 2025-12-21 23:50:06 +01:00
sum.py Add ruff linter/formatter for Python 2025-12-21 21:54:26 +01:00