Oliver 12fcccb5a6 Fix API endpoint permission for the "AttachmentMixin" class (#3218) ...

* Fix API endpoint permission for the "AttachmentMixin" class

- Any authenticated user could perform CREATE and UPDATE operations on attachments
- Could be performed via the browsable DRF API
- Could also be performed via the front-end (with some advaned jiggering of OPTIONS code)

* Show or hide buttons depending on the permissions of the user

* Add shortcut for table permission check

2022-06-18 14:48:09 +10:00

..

fixtures

Adding bulk deletion endpoint for notifications (#3154)

2022-06-08 07:45:30 +10:00

migrations

Added missing migration file (how did it escape?)

2021-01-13 17:33:55 -05:00

__init__.py

Added User API and serializer

2017-04-20 22:40:59 +10:00

admin.py

Docstring checks in QC checks (#3089)

2022-06-02 01:37:39 +10:00

api.py

Add bleach (#41) (#3204)

2022-06-16 10:01:53 +10:00

apps.py

Docstring checks in QC checks (#3089)

2022-06-02 01:37:39 +10:00

models.py

Fix API endpoint permission for the "AttachmentMixin" class (#3218)

2022-06-18 14:48:09 +10:00

serializers.py

Add new global setting to control auto-upload of test reports (#3137)

2022-06-06 15:20:41 +10:00

test_migrations.py

Docstring checks in QC checks (#3089)

2022-06-02 01:37:39 +10:00

tests.py

Docstring checks in QC checks (#3089)

2022-06-02 01:37:39 +10:00