add oauth permissions

master
justcool393 2022-10-05 22:33:55 -07:00
parent dc5a132583
commit 20bd38b5d3
2 changed files with 8 additions and 7 deletions

View File

@ -177,6 +177,7 @@ PERMS = { # Minimum admin_level to perform action.
'NOTIFICATIONS_MODMAIL': 3, 'NOTIFICATIONS_MODMAIL': 3,
'NOTIFICATIONS_FOR_SPECIFIC_WPD_COMMENTS': 1, 'NOTIFICATIONS_FOR_SPECIFIC_WPD_COMMENTS': 1,
'MESSAGE_BLOCKED_USERS': 1, 'MESSAGE_BLOCKED_USERS': 1,
'APPS_MODERATE': 3,
} }
FEATURES = { FEATURES = {

View File

@ -83,7 +83,7 @@ def request_api_keys(v):
new_comment.top_comment_id = new_comment.id new_comment.top_comment_id = new_comment.id
for admin in g.db.query(User).filter(User.admin_level > 2).all(): for admin in g.db.query(User).filter(User.admin_level >= PERMS['APPS_MODERATE']).all():
notif = Notification(comment_id=new_comment.id, user_id=admin.id) notif = Notification(comment_id=new_comment.id, user_id=admin.id)
g.db.add(notif) g.db.add(notif)
@ -137,7 +137,7 @@ def edit_oauth_app(v, aid):
@app.post("/admin/app/approve/<aid>") @app.post("/admin/app/approve/<aid>")
@limiter.limit("1/second;30/minute;200/hour;1000/day") @limiter.limit("1/second;30/minute;200/hour;1000/day")
@admin_level_required(3) @admin_level_required(PERMS['APPS_MODERATE'])
def admin_app_approve(v, aid): def admin_app_approve(v, aid):
app = g.db.get(OauthApp, aid) app = g.db.get(OauthApp, aid)
@ -173,7 +173,7 @@ def admin_app_approve(v, aid):
@app.post("/admin/app/revoke/<aid>") @app.post("/admin/app/revoke/<aid>")
@limiter.limit("1/second;30/minute;200/hour;1000/day") @limiter.limit("1/second;30/minute;200/hour;1000/day")
@admin_level_required(3) @admin_level_required(PERMS['APPS_MODERATE'])
def admin_app_revoke(v, aid): def admin_app_revoke(v, aid):
app = g.db.get(OauthApp, aid) app = g.db.get(OauthApp, aid)
@ -198,7 +198,7 @@ def admin_app_revoke(v, aid):
@app.post("/admin/app/reject/<aid>") @app.post("/admin/app/reject/<aid>")
@limiter.limit("1/second;30/minute;200/hour;1000/day") @limiter.limit("1/second;30/minute;200/hour;1000/day")
@admin_level_required(3) @admin_level_required(PERMS['APPS_MODERATE'])
def admin_app_reject(v, aid): def admin_app_reject(v, aid):
app = g.db.get(OauthApp, aid) app = g.db.get(OauthApp, aid)
@ -223,7 +223,7 @@ def admin_app_reject(v, aid):
@app.get("/admin/app/<aid>") @app.get("/admin/app/<aid>")
@admin_level_required(3) @admin_level_required(PERMS['APPS_MODERATE'])
def admin_app_id(v, aid): def admin_app_id(v, aid):
aid=aid aid=aid
oauth = g.db.get(OauthApp, aid) oauth = g.db.get(OauthApp, aid)
@ -244,7 +244,7 @@ def admin_app_id(v, aid):
) )
@app.get("/admin/app/<aid>/comments") @app.get("/admin/app/<aid>/comments")
@admin_level_required(3) @admin_level_required(PERMS['APPS_MODERATE'])
def admin_app_id_comments(v, aid): def admin_app_id_comments(v, aid):
aid=aid aid=aid
@ -271,7 +271,7 @@ def admin_app_id_comments(v, aid):
@app.get("/admin/apps") @app.get("/admin/apps")
@admin_level_required(3) @admin_level_required(PERMS['APPS_MODERATE'])
def admin_apps_list(v): def admin_apps_list(v):
apps = g.db.query(OauthApp).order_by(OauthApp.id.desc()).all() apps = g.db.query(OauthApp).order_by(OauthApp.id.desc()).all()