Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
疯人忠
Cvat
提交
43e22c2c
C
Cvat
项目概览
疯人忠
/
Cvat
通知
1
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
DevOps
流水线
流水线任务
计划
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
C
Cvat
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
DevOps
DevOps
流水线
流水线任务
计划
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
流水线任务
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
未验证
提交
43e22c2c
编写于
11月 01, 2022
作者:
B
Boris Sekachev
提交者:
GitHub
11月 01, 2022
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Updated rego rules, job assignee can resolve an issue (#5167)
上级
80c72340
变更
5
展开全部
隐藏空白更改
内联
并排
Showing
5 changed file
with
5750 addition
and
5741 deletion
+5750
-5741
CHANGELOG.md
CHANGELOG.md
+1
-0
cvat/apps/iam/rules/issues.csv
cvat/apps/iam/rules/issues.csv
+2
-2
cvat/apps/iam/rules/issues.rego
cvat/apps/iam/rules/issues.rego
+21
-6
cvat/apps/iam/rules/issues_test.gen.rego
cvat/apps/iam/rules/issues_test.gen.rego
+5724
-5731
tests/python/rest_api/test_issues.py
tests/python/rest_api/test_issues.py
+2
-2
未找到文件。
CHANGELOG.md
浏览文件 @
43e22c2c
...
...
@@ -61,6 +61,7 @@ non-ascii paths while adding files from "Connected file share" (issue #4428)
-
Skeleton points exported out of order in the COCO Keypoints format
(
<https://github.com/opencv/cvat/issues/5048>
)
-
Changing an object causes current z layer to be set to the maximum (
<https://github.com/opencv/cvat/pull/5145>
)
-
Job assignee can not resolve an issue (
<https://github.com/opencv/cvat/pull/5167>
)
-
Create manifest with cvat/server docker container command (
<https://github.com/opencv/cvat/pull/5172>
)
### Security
...
...
cvat/apps/iam/rules/issues.csv
浏览文件 @
43e22c2c
...
...
@@ -10,9 +10,9 @@ view,Issue,Sandbox,"Project:owner, Project:assignee, Task:owner, Task:assignee,
view,Issue,Organization,N/A,,GET,/issues/{id},User,Maintainer
view,Issue,Organization,"Project:owner, Project:assignee, Task:owner, Task:assignee, Job:assignee, Owner, Assignee",,GET,/issues/{id},None,Worker
update,Issue,Sandbox,N/A,,PATCH,/issues/{id},Admin,N/A
update,Issue,Sandbox,"Project:owner, Project:assignee, Task:owner, Task:assignee,
Owner
",,PATCH,/issues/{id},Worker,N/A
update,Issue,Sandbox,"Project:owner, Project:assignee, Task:owner, Task:assignee,
Job:assignee, Owner, Assignee
",,PATCH,/issues/{id},Worker,N/A
update,Issue,Organization,N/A,,PATCH,/issues/{id},User,Maintainer
update,Issue,Organization,"Project:owner, Project:assignee, Task:owner, Task:assignee,
Owner
",,PATCH,/issues/{id},Worker,Worker
update,Issue,Organization,"Project:owner, Project:assignee, Task:owner, Task:assignee,
Job:assignee, Owner, Assignee
",,PATCH,/issues/{id},Worker,Worker
delete,Issue,Sandbox,N/A,,DELETE,/issues/{id},Admin,N/A
delete,Issue,Sandbox,"Project:owner, Project:assignee, Task:owner, Task:assignee, Owner",,DELETE,/issues/{id},Worker,N/A
delete,Issue,Organization,N/A,,DELETE,/issues/{id},User,Maintainer
...
...
cvat/apps/iam/rules/issues.rego
浏览文件 @
43e22c2c
...
...
@@ -222,23 +222,38 @@ allow {
}
allow
{
{
utils
.
UPDATE
,
utils
.
DELETE
}[
input
.
scope
]
input
.
scope
==
utils
.
UPDATE
utils
.
is_sandbox
utils
.
has_perm
(
utils
.
WORKER
)
is_issue_
admin
is_issue_
staff
}
allow
{
{
utils
.
UPDATE
,
utils
.
DELETE
}[
input
.
scope
]
input
.
scope
==
utils
.
UPDATE
input
.
auth
.
organization
.
id
==
input
.
resource
.
organization
.
id
utils
.
has_perm
(
utils
.
USER
)
organizations
.
has_perm
(
organizations
.
MAINTAINER
)
utils
.
has_perm
(
utils
.
WORKER
)
organizations
.
is_member
is_issue_staff
}
allow
{
{
utils
.
UPDATE
,
utils
.
DELETE
}[
input
.
scope
]
input
.
scope
==
utils
.
DELETE
utils
.
is_sandbox
utils
.
has_perm
(
utils
.
WORKER
)
is_issue_admin
}
allow
{
input
.
scope
==
utils
.
DELETE
input
.
auth
.
organization
.
id
==
input
.
resource
.
organization
.
id
utils
.
has_perm
(
utils
.
WORKER
)
organizations
.
is_member
is_issue_admin
}
allow
{
{
utils
.
UPDATE
,
utils
.
DELETE
}[
input
.
scope
]
input
.
auth
.
organization
.
id
==
input
.
resource
.
organization
.
id
utils
.
has_perm
(
utils
.
USER
)
organizations
.
has_perm
(
organizations
.
MAINTAINER
)
}
cvat/apps/iam/rules/issues_test.gen.rego
浏览文件 @
43e22c2c
此差异已折叠。
点击以展开。
tests/python/rest_api/test_issues.py
浏览文件 @
43e22c2c
...
...
@@ -169,7 +169,7 @@ class TestPatchIssues:
(
"user"
,
True
,
None
,
True
),
(
"user"
,
False
,
None
,
False
),
(
"worker"
,
False
,
True
,
True
),
(
"worker"
,
True
,
False
,
Fals
e
),
(
"worker"
,
True
,
False
,
Tru
e
),
(
"worker"
,
False
,
False
,
False
),
],
)
...
...
@@ -203,7 +203,7 @@ class TestPatchIssues:
(
"owner"
,
True
,
None
,
True
),
(
"owner"
,
False
,
None
,
True
),
(
"worker"
,
False
,
True
,
True
),
(
"worker"
,
True
,
False
,
Fals
e
),
(
"worker"
,
True
,
False
,
Tru
e
),
(
"worker"
,
False
,
False
,
False
),
],
)
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录