sarlink/sarlink-portal-api
7
0
Fork 0
mirror of https://github.com/i701/sarlink-portal-api.git synced 2025-10-05 13:35:23 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

refactor: remove UpdateAgreementView and its URL path from user management 🔨
All checks were successful
Build and Push Docker Images / Build and Push Docker Images (push) Successful in 3m39s
Details

Browse Source
This commit is contained in:
i701
2025-07-25 00:05:35 +05:00
parent 9e4449d0d6
commit fd603daaaf
2 changed files with 2 additions and 33 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
api/urls.py
View File

@@ -23,7 +23,6 @@ from .views import (
UserVerifyAPIView,
UserUpdateAPIView,
UserRejectAPIView,
UpdateAgreementView,
)
@@ -46,11 +45,6 @@ urlpatterns = [
path("users/temp/filter/", filter_temporary_user, name="filter-temporary-users"),
# User verification flow
path("users/<int:pk>/verify/", UserVerifyAPIView.as_view(), name="user-verify"),
path(
"users/<int:pk>/agreement/",
UpdateAgreementView.as_view(),
name="user-agreement",
),
path("users/<int:pk>/reject/", UserRejectAPIView.as_view(), name="user-reject"),
path("healthcheck/", healthcheck, name="healthcheck"),
path("test/", test_email, name="testemail"),

29
api/views.py
View File

@@ -353,19 +353,6 @@ class UserUpdateAPIView(StaffEditorPermissionMixin, generics.UpdateAPIView):
data=request.data,
partial=True,
)
serializer.is_valid(raise_exception=True)
user.save()
return super().update(request, *args, **kwargs)
class UpdateAgreementView(StaffEditorPermissionMixin, generics.UpdateAPIView):
serializer_class = UserUpdateSerializer
queryset = User.objects.all()
lookup_field = "pk"
def update(self, request, *args, **kwargs):
user_id = kwargs.get("pk")
user = get_object_or_404(User, pk=user_id)
agreement_file = request.data.get("agreement_file")
if not agreement_file:
return Response(
@@ -384,21 +371,9 @@ class UpdateAgreementView(StaffEditorPermissionMixin, generics.UpdateAPIView):
{"message": "Invalid file type. Only PDF files are allowed."},
status=status.HTTP_400_BAD_REQUEST,
)
if request.user != user and (
not request.user.is_authenticated
or not getattr(request.user, "is_admin", False)
):
return Response(
{"message": "You are not authorized to update this user."},
status=status.HTTP_403_FORBIDDEN,
)
serializer = self.get_serializer(
user,
data=request.data,
partial=True,
)
if agreement_file:
user.agreement = agreement_file
serializer.is_valid(raise_exception=True)
user.agreement = agreement_file
user.save()
return super().update(request, *args, **kwargs)