feat: implement role-based access control for miniapp
All checks were successful
CI / lint-and-test (push) Successful in 22s
All checks were successful
CI / lint-and-test (push) Successful in 22s
- Introduced a new roles table in the database to manage user roles ('user' and 'admin') for access control.
- Updated the user model to include a foreign key reference to the roles table, allowing for role assignment.
- Enhanced command handlers to support the `/set_role` command for admins to assign roles to users.
- Refactored access control logic to utilize role checks instead of username/phone allowlists, improving security and maintainability.
- Updated documentation to reflect changes in access control mechanisms and role management.
- Added unit tests to ensure correct functionality of role assignment and access checks.
This commit is contained in:
@@ -22,11 +22,13 @@ duty_teller/db/schemas.py
|
||||
duty_teller/db/session.py
|
||||
duty_teller/handlers/__init__.py
|
||||
duty_teller/handlers/commands.py
|
||||
duty_teller/handlers/common.py
|
||||
duty_teller/handlers/errors.py
|
||||
duty_teller/handlers/group_duty_pin.py
|
||||
duty_teller/handlers/import_duty_schedule.py
|
||||
duty_teller/i18n/__init__.py
|
||||
duty_teller/i18n/core.py
|
||||
duty_teller/i18n/lang.py
|
||||
duty_teller/i18n/messages.py
|
||||
duty_teller/importers/__init__.py
|
||||
duty_teller/importers/duty_schedule.py
|
||||
@@ -55,6 +57,7 @@ tests/test_import_service.py
|
||||
tests/test_package_init.py
|
||||
tests/test_personal_calendar_ics.py
|
||||
tests/test_repository_duty_range.py
|
||||
tests/test_repository_roles.py
|
||||
tests/test_run.py
|
||||
tests/test_telegram_auth.py
|
||||
tests/test_utils.py
|
||||
Reference in New Issue
Block a user