feat(traceability matrix manager): [closes-TMM-1, TMM-2, TMM-3] add API code for traceability matrix manager (#1)

Author: omarfrancodev

.gitignore

@@ -158,3 +158,7 @@ cython_debug/
 #  and can be added to the global gitignore or merged into this file.  For a more nuclear
 #  option (not recommended) you can uncomment the following to ignore the entire idea folder.
 #.idea/
+
+
+.vscode
+/media/

custompermissions/__init__.py

@@ -0,0 +1,3 @@
+from django.contrib import admin
+
+# Register your models here.

custompermissions/admin.py

@@ -0,0 +1,9 @@
+from django.apps import AppConfig
+
+
+class CustompermissionsConfig(AppConfig):
+    default_auto_field = 'django.db.models.BigAutoField'
+    name = 'custompermissions'
+    
+    def ready(self):
+        from . import signals

custompermissions/apps.py

@@ -0,0 +1,3 @@
+from django.db import models
+
+# Create your models here.

custompermissions/migrations/__init__.py

@@ -0,0 +1,41 @@
+from rest_framework.permissions import BasePermission
+from django.contrib.auth import get_user_model
+from eventrecord.models import EventRecord
+
+from project.models import Project
+from record.models import Record
+
+User = get_user_model()
+grp = " Group";
+
+class AdminPermission(BasePermission):
+    def has_permission(self, request, view):
+        return request.user and request.user.groups.filter(name=User.Role.Admin + grp).exists()
+
+class TeamMemberPermission(BasePermission):
+    def has_permission(self, request, view):
+        return request.user and request.user.groups.filter(name=User.Role.TeamMember + grp).exists()
+    
+    def has_object_permission(self, request, view, obj):
+        if isinstance(obj, Project):
+            return obj.assignedUsers.filter(id=request.user.id).exists()
+        elif isinstance(obj, Record):
+            project = obj.associatedProject
+            return project.assignedUsers.filter(id=request.user.id).exists()
+        elif isinstance(obj, EventRecord):
+            return True
+        return False
+    
+class GuestPermission(BasePermission):
+    def has_permission(self, request, view):
+        return request.user and request.user.groups.filter(name=User.Role.Guest + grp).exists()
+        
+    def has_object_permission(self, request, view, obj):
+        if isinstance(obj, Project):
+            return obj.assignedUsers.filter(id=request.user.id).exists()
+        elif isinstance(obj, Record):
+            project = obj.associatedProject
+            return project.assignedUsers.filter(id=request.user.id).exists()
+        elif isinstance(obj, EventRecord):
+            return True
+        return False

custompermissions/models.py

@@ -0,0 +1,56 @@
+from django.db.models.signals import post_migrate
+from django.contrib.auth.models import Group, Permission
+from django.contrib.auth import get_user_model
+from django.dispatch import receiver
+
+User = get_user_model()
+
+@receiver(post_migrate)
+def create_groups_and_permissions(sender, **kwargs):
+    grp = " Group"
+    adminGroup, _ = Group.objects.get_or_create(name=User.Role.Admin + grp)
+    teamMemberGroup, _ = Group.objects.get_or_create(name=User.Role.TeamMember + grp)
+    guestGroup, _ = Group.objects.get_or_create(name=User.Role.Guest + grp)
+
+    permissionsAdmin = Permission.objects.filter(
+        codename__in=[
+            "view_eventrecord",
+            "add_eventrecord",
+            "view_project",
+            "add_project",
+            "change_project",
+            "delete_project",
+            "add_record",
+            "view_record",
+            "change_record",
+            "delete_record",
+            "view_user",
+            "add_user",
+            "change_user",
+            "delete_user",
+        ]
+    )
+    adminGroup.permissions.set(permissionsAdmin)
+
+    permissionsTM = Permission.objects.filter(
+        codename__in=[
+            "view_eventrecord",
+            "add_eventrecord",
+            "view_project",
+            "view_record",
+            "add_record",
+            "change_record",
+            "delete_record",
+        ]
+    )
+    teamMemberGroup.permissions.set(permissionsTM)
+
+    permissionsGuest = Permission.objects.filter(
+        codename__in=[
+            "view_eventrecord",
+            "add_eventrecord",
+            "view_project",
+            "view_record",
+        ]
+    )
+    guestGroup.permissions.set(permissionsGuest)

custompermissions/permissions.py

@@ -0,0 +1,3 @@
+from django.test import TestCase
+
+# Create your tests here.

custompermissions/signals.py

@@ -0,0 +1,3 @@
+from django.shortcuts import render
+
+# Create your views here.