summaryrefslogtreecommitdiff
path: root/opendc/models
diff options
context:
space:
mode:
Diffstat (limited to 'opendc/models')
-rw-r--r--opendc/models/simulation.py11
1 files changed, 11 insertions, 0 deletions
diff --git a/opendc/models/simulation.py b/opendc/models/simulation.py
index bb2ef1bc..f58581cf 100644
--- a/opendc/models/simulation.py
+++ b/opendc/models/simulation.py
@@ -1,5 +1,16 @@
from opendc.models.model import Model
+from opendc.models.user import User
+from opendc.util.rest import Response
class Simulation(Model):
collection_name = 'simulations'
+
+ def validate_user_access(self, google_id, edit_access):
+ user = User.from_google_id(google_id)
+ authorizations = list(
+ filter(lambda x: str(x['simulationId']) == str(self.obj['_id']), user.obj['authorizations']))
+ if len(authorizations) == 0 or (edit_access and authorizations[0]['authorizationLevel'] == 'VIEW'):
+ return Response(403, "Forbidden from retrieving simulation.")
+
+ return None
generated by cgit v1.2.3 (git 2.25.1) at 2026-02-04 21:25:16 +0000