Feature/add way to change password and PERMISSIONS
Closes #272 (closed) and #31 (closed)
I put the WIP prefix because I guess we will have to test some features first and decide which permissions we should set.
Merge request reports
Activity
assigned to @piotr.gawron
added 2 commits
added 7 commits
- fd21d8bb - show if worker is super user
- 9541d97f - added decorator to worker listing view method
- 7aa15f11 - added the missing @
- cf945719 - added support for class-based views
- 6037223b - consider voucher permission
- 805c4faf - added decorators properly in class-based views
- 448c4e1c - updated view and form tests
Toggle commit listassigned to @piotr.gawron
added 22 commits
-
448c4e1c...565f15a2 - 21 commits from branch
master - 7db59826 - fixed code to merge
-
448c4e1c...565f15a2 - 21 commits from branch
-
Login doesn't work in a situation when user doesn't have access to some page but tries to access it before logging in.
To better understand let me give an example. We have user 'test' that doesn't have access to languages subpage. Now open incognito window (so you are not logged in) and try to access page: http://localhost:8000/languages. This redirects you to login page, which is perfectly normal. Now after providing correct login and password nothing happens (at least it looks that way, because from undergoing http calls you can see that login was successful but redirection was denied so you ended up at the login page with no error information)
mentioned in issue #279 (closed)
The problem is that the decorator returns to the referer. I found no safe way to check if the referer is the login page or not other than a string contains comparison to check if the url contains
/account/login. Instead, what I did, is that the login template, if it founds the user is already authenticated, will redirect the user to the index page.mentioned in commit ce5093ff