allows mask for Oauth2

2025-10-18 19:26:45 +02:00 · 2025-10-17 17:45:41 +02:00
parent 4c40566513
commit d2cc1b902d
2 changed files with 10 additions and 1 deletions
--- a/apps/permission/backends.py
+++ b/apps/permission/backends.py
@@ -39,7 +39,15 @@ class PermissionBackend(ModelBackend):

            def permission_filter(membership_obj):
                query = Q(pk=-1)
+                if 'mask' in request.GET:
+                    try:
+                        rank = int(request.GET['mask'])
+                    except:
+                        rank = 42
+                    query &= Q(mask__rank__lte=rank)
                for scope in request.auth.scope.split(' '):
+                    if scope == "openid":
+                        continue
                    permission_id, club_id = scope.split('_')
                    if int(club_id) == membership_obj.club_id:
                        query |= Q(pk=permission_id)