PyPI - nautobot - Versions diffs - 3.0.0rc2__py3-none-any.whl → 3.0.2__py3-none-any.whl - Mend

nautobot 3.0.0rc2py3-none-any.whl → 3.0.2py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of nautobot might be problematic. Click here for more details.

Files changed (51) hide show

nautobot/apps/views.py +2 -0
nautobot/core/celery/__init__.py +46 -1
nautobot/core/cli/bootstrap_v3_to_v5.py +125 -44
nautobot/core/jobs/bulk_actions.py +12 -6
nautobot/core/settings.py +13 -0
nautobot/core/settings.yaml +22 -0
nautobot/core/templates/components/panel/body_wrapper_generic_table.html +1 -1
nautobot/core/templates/nautobot_config.py.j2 +14 -1
nautobot/core/templates/redoc_ui.html +3 -0
nautobot/core/testing/filters.py +2 -2
nautobot/core/testing/views.py +1 -1
nautobot/core/tests/test_jobs.py +118 -0
nautobot/core/tests/test_views.py +24 -0
nautobot/core/ui/bulk_buttons.py +2 -3
nautobot/core/ui/object_detail.py +2 -2
nautobot/core/views/generic.py +1 -0
nautobot/core/views/mixins.py +6 -7
nautobot/core/views/renderers.py +1 -0
nautobot/core/views/utils.py +3 -3
nautobot/dcim/tables/devices.py +1 -1
nautobot/dcim/views.py +1 -1
nautobot/extras/jobs.py +48 -2
nautobot/extras/models/jobs.py +1 -0
nautobot/extras/models/models.py +19 -0
nautobot/extras/tables.py +9 -6
nautobot/extras/templates/extras/approval_workflow/approve.html +9 -2
nautobot/extras/templates/extras/approval_workflow/deny.html +9 -3
nautobot/extras/tests/test_customfields_filters.py +84 -4
nautobot/extras/tests/test_views.py +40 -4
nautobot/extras/views.py +63 -38
nautobot/project-static/dist/css/graphql-libraries.css.map +1 -1
nautobot/project-static/dist/css/materialdesignicons.css.map +1 -1
nautobot/project-static/dist/css/nautobot.css +1 -1
nautobot/project-static/dist/css/nautobot.css.map +1 -1
nautobot/project-static/dist/js/graphql-libraries.js +1 -1
nautobot/project-static/dist/js/graphql-libraries.js.map +1 -1
nautobot/project-static/dist/js/libraries.js.map +1 -1
nautobot/project-static/dist/js/nautobot-graphiql.js.map +1 -1
nautobot/project-static/dist/js/nautobot.js.map +1 -1
nautobot/project-static/img/dark-theme.png +0 -0
nautobot/project-static/img/light-theme.png +0 -0
nautobot/project-static/img/system-theme.png +0 -0
nautobot/ui/package-lock.json +25 -25
nautobot/ui/package.json +6 -6
nautobot/ui/src/scss/nautobot.scss +2 -1
{nautobot-3.0.0rc2.dist-info → nautobot-3.0.2.dist-info}/METADATA +6 -6
{nautobot-3.0.0rc2.dist-info → nautobot-3.0.2.dist-info}/RECORD +51 -51
{nautobot-3.0.0rc2.dist-info → nautobot-3.0.2.dist-info}/LICENSE.txt +0 -0
{nautobot-3.0.0rc2.dist-info → nautobot-3.0.2.dist-info}/NOTICE +0 -0
{nautobot-3.0.0rc2.dist-info → nautobot-3.0.2.dist-info}/WHEEL +0 -0
{nautobot-3.0.0rc2.dist-info → nautobot-3.0.2.dist-info}/entry_points.txt +0 -0

nautobot/extras/views.py CHANGED Viewed

@@ -420,27 +420,33 @@ class ApprovalWorkflowStageUIViewSet(
         ],
     )
-    @action(detail=True, url_path="approve", methods=["get", "post"])
+    @action(
+        detail=True,
+        url_path="approve",
+        methods=["get", "post"],
+        custom_view_base_action="change",
+        custom_view_additional_permissions=["extras.view_approvalworkflowstage"],
+    )
     def approve(self, request, *args, **kwargs):
         """
         Approve the approval workflow stage response.
         """
         instance = self.get_object()
-        try:
-            approval_workflow_stage_response = ApprovalWorkflowStageResponse.objects.get(
-                approval_workflow_stage=instance,
-                user=request.user,
-            )
-        except ApprovalWorkflowStageResponse.DoesNotExist:
-            approval_workflow_stage_response = ApprovalWorkflowStageResponse.objects.create(
-                approval_workflow_stage=instance,
-                user=request.user,
-            )
+        if not (
+            request.user.is_superuser
+            or instance.approval_workflow_stage_definition.approver_group.user_set.filter(id=request.user.id).exists()
+        ):
+            messages.error(request, "You are not permitted to approve this workflow stage.")
+            return redirect(self.get_return_url(request, instance))
         if request.method == "GET":
-            obj = approval_workflow_stage_response
-            form = ApprovalForm(initial={"comments": obj.comments})
+            if existing_response := ApprovalWorkflowStageResponse.objects.filter(
+                approval_workflow_stage=instance, user=request.user
+            ).first():
+                form = ApprovalForm(initial={"comments": existing_response.comments})
+            else:
+                form = ApprovalForm()
             object_under_review = instance.approval_workflow.object_under_review
             template_name = getattr(object_under_review, "get_approval_template", lambda: None)()
@@ -451,15 +457,19 @@ class ApprovalWorkflowStageUIViewSet(
                 request,
                 template_name,
                 {
-                    "obj": obj.approval_workflow_stage,
-                    "object_under_review": obj.approval_workflow_stage.approval_workflow.object_under_review,
+                    "obj": instance,
+                    "object_under_review": instance.approval_workflow.object_under_review,
                     "form": form,
                     "obj_type": ApprovalWorkflowStage._meta.verbose_name,
-                    "return_url": self.get_return_url(request, obj),
+                    "return_url": self.get_return_url(request, instance),
                     "card_class": "success",
                     "button_class": "success",
                 },
             )
+        approval_workflow_stage_response, _ = ApprovalWorkflowStageResponse.objects.get_or_create(
+            approval_workflow_stage=instance, user=request.user
+        )
         approval_workflow_stage_response.comments = request.data.get("comments")
         approval_workflow_stage_response.state = ApprovalWorkflowStateChoices.APPROVED
         approval_workflow_stage_response.save()
@@ -467,40 +477,49 @@ class ApprovalWorkflowStageUIViewSet(
         messages.success(request, f"You approved {instance}.")
         return redirect(self.get_return_url(request))
-    @action(detail=True, url_path="deny", methods=["get", "post"])
+    @action(
+        detail=True,
+        url_path="deny",
+        methods=["get", "post"],
+        custom_view_base_action="change",
+        custom_view_additional_permissions=["extras.view_approvalworkflowstage"],
+    )
     def deny(self, request, *args, **kwargs):
         """
         Deny the approval workflow stage response.
         """
         instance = self.get_object()
-        try:
-            approval_workflow_stage_response = ApprovalWorkflowStageResponse.objects.get(
-                approval_workflow_stage=instance,
-                user=request.user,
-            )
-        except ApprovalWorkflowStageResponse.DoesNotExist:
-            approval_workflow_stage_response = ApprovalWorkflowStageResponse.objects.create(
-                approval_workflow_stage=instance,
-                user=request.user,
-                state=ApprovalWorkflowStateChoices.PENDING,
-            )
+        if not (
+            request.user.is_superuser
+            or instance.approval_workflow_stage_definition.approver_group.user_set.filter(id=request.user.id).exists()
+        ):
+            messages.error(request, "You are not permitted to deny this workflow stage.")
+            return redirect(self.get_return_url(request, instance))
         if request.method == "GET":
-            obj = approval_workflow_stage_response
-            form = ApprovalForm(initial={"comments": obj.comments})
+            if existing_response := ApprovalWorkflowStageResponse.objects.filter(
+                approval_workflow_stage=instance, user=request.user
+            ).first():
+                form = ApprovalForm(initial={"comments": existing_response.comments})
+            else:
+                form = ApprovalForm()
             return render(
                 request,
                 "extras/approval_workflow/deny.html",
                 {
-                    "obj": obj.approval_workflow_stage,
-                    "object_under_review": obj.approval_workflow_stage.approval_workflow.object_under_review,
+                    "obj": instance,
+                    "object_under_review": instance.approval_workflow.object_under_review,
                     "form": form,
                     "obj_type": ApprovalWorkflowStage._meta.verbose_name,
-                    "return_url": self.get_return_url(request, obj),
+                    "return_url": self.get_return_url(request, instance),
                 },
             )
+        approval_workflow_stage_response, _ = ApprovalWorkflowStageResponse.objects.get_or_create(
+            approval_workflow_stage=instance, user=request.user
+        )
         approval_workflow_stage_response.comments = request.data.get("comments")
         approval_workflow_stage_response.state = ApprovalWorkflowStateChoices.DENIED
         approval_workflow_stage_response.save()
@@ -508,7 +527,13 @@ class ApprovalWorkflowStageUIViewSet(
         messages.success(request, f"You denied {instance}.")
         return redirect(self.get_return_url(request))
-    @action(detail=True, url_path="comment", methods=["get", "post"])
+    @action(
+        detail=True,
+        url_path="comment",
+        methods=["get", "post"],
+        custom_view_base_action="change",
+        custom_view_additional_permissions=["extras.view_approvalworkflowstage"],
+    )
     def comment(self, request, *args, **kwargs):
         """
         Comment the approval workflow stage response.
@@ -521,11 +546,12 @@ class ApprovalWorkflowStageUIViewSet(
             )
             return redirect(self.get_return_url(request, instance))
+        # We don't enforce approver-group/superuser check here, anyone can comment, not just an approver.
         if request.method == "GET":
-            existing_response = ApprovalWorkflowStageResponse.objects.filter(
+            if existing_response := ApprovalWorkflowStageResponse.objects.filter(
                 approval_workflow_stage=instance, user=request.user
-            ).first()
-            if existing_response is not None:
+            ).first():
                 form = ApprovalForm(initial={"comments": existing_response.comments})
             else:
                 form = ApprovalForm()
@@ -547,7 +573,6 @@ class ApprovalWorkflowStageUIViewSet(
         approval_workflow_stage_response, _ = ApprovalWorkflowStageResponse.objects.get_or_create(
             approval_workflow_stage=instance, user=request.user
         )
         approval_workflow_stage_response.comments = request.data.get("comments")
         # we don't want to change a state if is approved, denied or canceled
         if approval_workflow_stage_response.state == ApprovalWorkflowStateChoices.PENDING:

nautobot 3.0.0rc2__py3-none-any.whl → 3.0.2__py3-none-any.whl

Potentially problematic release.

nautobot 3.0.0rc2py3-none-any.whl → 3.0.2py3-none-any.whl