security model assumes that validate_report_permissions_scope checks it / returns forbidden if not applicable.
()
| 35 | Roles = ['normal_user'], |
| 36 | apis_user_list = ["api_enabled_builder"]) |
| 37 | def report_list_api(): |
| 38 | """ |
| 39 | |
| 40 | security model assumes that validate_report_permissions_scope |
| 41 | checks it / returns forbidden if not applicable. |
| 42 | |
| 43 | """ |
| 44 | |
| 45 | log, input, untrusted_input = regular_input.master( |
| 46 | request=request, |
| 47 | spec_list=report_list_api_spec) |
| 48 | |
| 49 | if len(log["error"].keys()) >= 1: |
| 50 | return jsonify(log=log), 400 |
| 51 | |
| 52 | with sessionMaker.session_scope() as session: |
| 53 | |
| 54 | report_runner = Report_Runner( |
| 55 | session = session, |
| 56 | member = None |
| 57 | ) |
| 58 | |
| 59 | if len(report_runner.log["error"].keys()) >= 1: |
| 60 | return jsonify(log=report_runner.log), 400 |
| 61 | |
| 62 | report_runner.validate_report_permissions_scope( |
| 63 | scope = input.get('scope'), |
| 64 | project_string_id = input.get('project_string_id') |
| 65 | ) |
| 66 | |
| 67 | report_template_list = report_runner.report_template_list( |
| 68 | report_dashboard_id = input.get('report_dashboard_id'), |
| 69 | only_is_visible_on_report_dashboard = input.get( |
| 70 | 'only_is_visible_on_report_dashboard') ) |
| 71 | |
| 72 | report_template_list_serialized = [] |
| 73 | for report_template in report_template_list: |
| 74 | report_template_list_serialized.append(report_template.serialize()) |
| 75 | |
| 76 | log['success'] = True |
| 77 | |
| 78 | return jsonify( report_template_list = report_template_list_serialized, |
| 79 | log = report_runner.log), 200 |
| 80 | |
| 81 | |
| 82 |
nothing calls this directly
no test coverage detected