QRouland/M2OLA
Archived
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

TG-126 Securiser les methodes de l'api

Browse Source
This commit is contained in:
Quentin Rouland
2017-03-31 00:19:02 +02:00
parent 8c97b49a67
commit aa6a2bc0bb
7 changed files with 44 additions and 22 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
backend/app/api/LivretAPI.py
View File

@@ -3,15 +3,15 @@ import os
from flask_restful import Resource, request
from app.api import mailsModels
from app.model import *
from app.utils import *
from app.model import Roles, getParam, getGroup, getUser, USER, GROUP, TUTORSHIP
from app.utils import send_mail, checkParams
from app.api.LoginAPI import login_required
class LivretAPI(Resource):
"""
Livret Api Resource
"""
@login_required(roles=[Roles.etudiant])
def post(self):
args = request.get_json(cache=False, force=True)
if not checkParams(['name', 'year', 'class_short', 'class_long', 'department', 'resp_id', 'sec_id'], args):