Skip to content

Commit

Permalink
REST API: contact group auth update
Browse files Browse the repository at this point in the history 
Change-Id: I9f82f4a38b63ef37a97db584f66f50f31bf2cb8f
  • Loading branch information
Christoph Rauch committed May 30, 2022
1 parent 6b5308e commit 4b9fe76
Showing 1 changed file with 18 additions and 5 deletions.
23 changes: 18 additions & 5 deletions cmk/gui/plugins/openapi/endpoints/contact_group_config.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@
from cmk.utils import version

from cmk.gui.http import Response
from cmk.gui.logged_in import SuperUserContext
from cmk.gui.logged_in import SuperUserContext, user
from cmk.gui.plugins.openapi.endpoints.utils import (
fetch_group,
fetch_specific_groups,
Expand Down Expand Up @@ -54,6 +54,13 @@

PERMISSIONS = permissions.Perm("wato.users")

RW_PERMISSIONS = permissions.AllPerm(
[
permissions.Perm("wato.edit"),
PERMISSIONS,
]
)


@Endpoint(
constructors.collection_href("contact_group_config"),
Expand All @@ -62,10 +69,11 @@
etag="output",
request_schema=request_schemas.InputContactGroup,
response_schema=response_schemas.DomainObject,
permissions_required=PERMISSIONS,
permissions_required=RW_PERMISSIONS,
)
def create(params):
"""Create a contact group"""
user.need_permission("wato.edit")
body = params["body"]
name = body["name"]
group_details = {"alias": body.get("alias")}
Expand All @@ -82,10 +90,11 @@ def create(params):
method="post",
request_schema=request_schemas.BulkInputContactGroup,
response_schema=response_schemas.DomainObjectCollection,
permissions_required=PERMISSIONS,
permissions_required=RW_PERMISSIONS,
)
def bulk_create(params):
"""Bulk create host groups"""
user.need_permission("wato.edit")
body = params["body"]
entries = body["entries"]
contact_group_details = prepare_groups("contact", entries)
Expand All @@ -104,9 +113,11 @@ def bulk_create(params):
".../collection",
method="get",
response_schema=response_schemas.LinkedValueDomainObjectCollection,
permissions_required=PERMISSIONS,
)
def list_group(params):
"""Show all contact groups"""
user.need_permission("wato.users")
collection = [
{"id": k, "alias": v["alias"]} for k, v in load_contact_group_information().items()
]
Expand Down Expand Up @@ -137,10 +148,11 @@ def show(params):
method="delete",
path_params=[NAME_FIELD],
output_empty=True,
permissions_required=PERMISSIONS,
permissions_required=RW_PERMISSIONS,
)
def delete(params):
"""Delete a contact group"""
user.need_permission("wato.edit")
name = params["name"]
check_modify_group_permissions("contact")
with endpoint.do_not_track_permissions(), SuperUserContext():
Expand Down Expand Up @@ -184,10 +196,11 @@ def bulk_delete(params):
response_schema=response_schemas.ContactGroup,
etag="both",
request_schema=request_schemas.UpdateGroup,
permissions_required=PERMISSIONS,
permissions_required=RW_PERMISSIONS,
)
def update(params):
"""Update a contact group"""
user.need_permission("wato.edit")
name = params["name"]
group = fetch_group(name, "contact")
constructors.require_etag(constructors.etag_of_dict(group))
Expand Down

0 comments on commit 4b9fe76

Please sign in to comment.