From 8806ad8c6094a18f030cbe9bd0086411c5f0c9a5 Mon Sep 17 00:00:00 2001
From: Jakub K <dzejbobix@gmail.com>
Date: Fri, 12 Jan 2024 16:27:14 +0100
Subject: [PATCH] oauth2 ustawienia + uprawnienia

---
 izaac/settings.py   |  2 +-
 jobposting/views.py | 20 ++++++++++++++------
 2 files changed, 15 insertions(+), 7 deletions(-)

diff --git a/izaac/settings.py b/izaac/settings.py
index 753ef8f..fcb67d4 100644
--- a/izaac/settings.py
+++ b/izaac/settings.py
@@ -50,7 +50,7 @@ REST_FRAMEWORK = {
 
 OAUTH2_PROVIDER = {
     # this is the list of available scopes
-    'SCOPES': {'read': 'Read scope', 'write': 'Write scope', 'groups': 'Access to your groups'}
+    'SCOPES': {'read': 'Read scope', 'write': 'Write scope', 'main': 'Access to all'}
 }
 
 # Application definition
diff --git a/jobposting/views.py b/jobposting/views.py
index 6ef3c14..9dbdb2b 100644
--- a/jobposting/views.py
+++ b/jobposting/views.py
@@ -17,15 +17,18 @@ from jobposting.serializers import (
 )
 
 class MyUserViewSet(viewsets.ModelViewSet):
-    permission_classes = [ClientCredentialPermission] # test only
+    permission_classes = [TokenHasReadWriteScope] # test only
     queryset = MyUser.objects.all()
     serializer_class = MyUserSerializer
+    requried_scope = ['main']
     # permission_classes = [permissions.IsAuthenticated]
 
 class JobListingViewSet(viewsets.ModelViewSet):
-    permission_classes = [ClientCredentialPermission] # test only
+    permission_classes = [TokenHasReadWriteScope] # test only
     queryset = JobListing.objects.all()
     serializer_class = JobListingSerializer
+    requried_scope = ['main']
+
     # permission_classes = [permissions.IsAuthenticatedOrReadOnly]
     
     def perform_create(self, serializer):
@@ -47,9 +50,11 @@ class JobListingViewSet(viewsets.ModelViewSet):
             serializer.save(anonymous_user_data=anonymous_user_data)
 
 class SkillLevelsViewSet(viewsets.ModelViewSet):
-    permission_classes = [ClientCredentialPermission] # test only
+    permission_classes = [TokenHasReadWriteScope] # test only
     queryset = SkillLevels.objects.all()
     serializer_class = SkillLevelsSerializer
+    requried_scope = ['main']
+
     # permission_classes = [permissions.IsAuthenticatedOrReadOnly]
 
     def create(self, request, *args, **kwargs):
@@ -65,11 +70,14 @@ class SkillLevelsViewSet(viewsets.ModelViewSet):
             return super().create(request, *args, **kwargs)
 
 class CompanyLogoViewSet(viewsets.ModelViewSet):
-    permission_classes = [ClientCredentialPermission]
+    permission_classes = [TokenHasReadWriteScope]
     queryset = CompanyLogo.objects.all()
     serializer_class = CompanyLogoSerializer
+    requried_scope = ['main']
+
 
 class SkillViewset(viewsets.ModelViewSet):
-    permission_classes = [ClientCredentialPermission]
+    permission_classes = [TokenHasReadWriteScope]
     queryset = Skill.objects.all()
-    serializer_class = SkillSerializer
\ No newline at end of file
+    serializer_class = SkillSerializer
+    requried_scope = ['main']