cwinfo/powerdns-admin
5
0
Fork 0
mirror of https://github.com/cwinfo/powerdns-admin.git synced 2024-11-09 23:20:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

Only Administrator users can remove the history

Browse Source
This commit is contained in:
Khanh Ngo 2018-09-04 13:02:19 +07:00
parent 0081adff36
commit fe07030487
No known key found for this signature in database
GPG Key ID: B9AE3BAF6D5A7B22
2 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
app/templates/admin_history.html
View File

@ -23,7 +23,7 @@
<h3 class="box-title">History Management</h3> <h3 class="box-title">History Management</h3>
</div> </div>
<div class="box-body clearfix"> <div class="box-body clearfix">
<button type="button" class="btn btn-flat btn-danger pull-right" data-toggle="modal" data-target="#modal_clear_history"> <button type="button" class="btn btn-flat btn-danger pull-right" data-toggle="modal" data-target="#modal_clear_history" {% if current_user.role != 'Administrator' %}disabled{% endif %}>
Clear History&nbsp;<i class="fa fa-trash"></i> Clear History&nbsp;<i class="fa fa-trash"></i>
</button> </button>
</div> </div>

4
app/views.py
View File

@ -1324,12 +1324,14 @@ def admin_manageaccount():
@operator_role_required @operator_role_required
def admin_history(): def admin_history():
if request.method == 'POST': if request.method == 'POST':
if current_user.role != 'Administrator':
return make_response(jsonify( { 'status': 'error', 'msg': 'You do not have permission to remove history.' } ), 401)
h = History() h = History()
result = h.remove_all() result = h.remove_all()
if result: if result:
history = History(msg='Remove all histories', created_by=current_user.username) history = History(msg='Remove all histories', created_by=current_user.username)
history.add() history.add()
return make_response(jsonify( { 'status': 'ok', 'msg': 'Changed user role successfully.' } ), 200) return make_response(jsonify( { 'status': 'ok', 'msg': 'Changed user role successfully.' } ), 200)
else: else:
return make_response(jsonify( { 'status': 'error', 'msg': 'Can not remove histories.' } ), 500) return make_response(jsonify( { 'status': 'error', 'msg': 'Can not remove histories.' } ), 500)