Check user permissions in config tool

Check permissions in tree viewer

Author: alesan99

specifyweb/backend/setup_tool/views.py

@@ -9,6 +9,7 @@
 from django.db import transaction
 from specifyweb.backend.setup_tool.utils import normalize_keys
 from specifyweb.backend.setup_tool.setup_tasks import create_discipline_and_trees_task
+from specifyweb.backend.permissions.permissions import check_table_permissions
 
 import logging
 logger = logging.getLogger(__name__)
@@ -135,6 +136,11 @@ def create_specifyuser_view(request):
 @require_POST
 @transaction.atomic
 def create_discipline_and_trees(request):
+    from specifyweb.specify.models import Discipline, Taxontreedef, Geographytreedef
+    check_table_permissions(request.specify_collection, request.specify_user_agent, Discipline, "create")
+    check_table_permissions(request.specify_collection, request.specify_user_agent, Taxontreedef, "create")
+    check_table_permissions(request.specify_collection, request.specify_user_agent, Geographytreedef, "create")
+
     raw_data = json.loads(request.body)
     data = normalize_keys(raw_data)
 

specifyweb/frontend/js_src/lib/components/SystemConfigurationTool/Hierarchy.tsx

@@ -25,6 +25,7 @@ import { Submit } from '../Atoms/Submit';
 import { LoadingContext } from '../Core/Contexts';
 import type { SpecifyResource } from '../DataModel/legacyTypes';
 import { tables } from '../DataModel/tables';
+import { Tables } from '../DataModel/types';
 import { getSystemInfo } from '../InitialContext/systemInfo';
 import { Dialog, LoadingScreen } from '../Molecules/Dialog';
 import { ResourceLink } from '../Molecules/ResourceLink';
@@ -40,6 +41,7 @@ import { nestAllResources } from '../SetupTool/utils';
 import type { TaxonFileDefaultDefinition } from '../TreeView/CreateTree';
 import { CollapsibleSection } from './CollapsibleSection';
 import type { InstitutionData } from './Utils';
+import { hasTablePermission } from '../Permissions/helpers';
 
 type HierarchyNodeKind =
   | 'collection'
@@ -392,6 +394,7 @@ const handleEditResource = (
   resource: SpecifyResource<any>,
   refreshAllInfo: () => Promise<void>
 ) => (
+  hasTablePermission(resource.specifyTable.name, 'update') ? 
   <div className="flex items-center">
     <ResourceLink
       component={Link.Default}
@@ -409,13 +412,14 @@ const handleEditResource = (
       {icons.pencil}
       {commonText.edit()}
     </ResourceLink>
-  </div>
+  </div> : null
 );
 
 const addButton = (
   createResource: () => void,
-  tableName: string
+  table: typeof tables[keyof typeof tables]
 ): JSX.Element => (
+  hasTablePermission(table.name, 'create') ? 
   <Button.LikeLink
     className="flex items-center gap-2 mb-2"
     onClick={() => {
@@ -424,9 +428,9 @@ const addButton = (
   >
     <span className="flex items-center gap-1">
       {icons.plus}
-      {`${setupToolText.hierarchyAddNew()} ${tableName}`}
+      {`${setupToolText.hierarchyAddNew()} ${tableLabel(table.name)}`}
     </span>
-  </Button.LikeLink>
+  </Button.LikeLink> : null
 );
 
 export function Hierarchy({
@@ -561,7 +565,7 @@ export function Hierarchy({
                   );
                   handleNewResource();
                   void refreshAllInfo();
-                }, tableLabel('Collection'))}
+                }, tables.Collection)}
               </div>
             )}
             {/* DISCIPLINE CONFIG DIALOGS */}
@@ -698,7 +702,7 @@ export function Hierarchy({
                 openDisciplineCreation();
                 setDisciplineStep(0);
               },
-              `${tableLabel('Discipline')}`
+              tables.Discipline
             )}
           </div>
         </CollapsibleSection>
@@ -743,7 +747,7 @@ export function Hierarchy({
                   setNewResource(new tables.Division.Resource());
                   handleNewResource();
                   void refreshAllInfo();
-                }, tableLabel('Division'))}
+                }, tables.Division)}
               </div>
             </CollapsibleSection>
           </li>

specifyweb/frontend/js_src/lib/components/TreeView/Tree.tsx

@@ -31,6 +31,7 @@ import { ImportTree } from './CreateTree';
 import type { Conformations, Row, Stats } from './helpers';
 import { fetchStats } from './helpers';
 import { TreeRow } from './Row';
+import { userInformation } from '../InitialContext/userInformation';
 
 const treeToPref = {
   Geography: 'geography',
@@ -284,7 +285,7 @@ export function Tree<
         </div>
       ) : (
         <>
-          {rows.length === 0 ? (
+          {userInformation.isadmin && rows.length === 0 ? (
             <div className="flex flex-col gap-2 p-2">
               <Button.LikeLink
                 aria-label={treeText.initializeEmptyTree()}

specifyweb/specify/api/crud.py

@@ -59,6 +59,7 @@ def create_obj(collection, agent, model, data: dict[str, Any], parent_obj=None,
     # Redirect to a dedicated object creation function for the model
     model_name = model.__name__.lower()
     if model_name in CREATE_MODEL_REDIRECTS:
+        check_table_permissions(collection, agent, model, "create")
         result = CREATE_MODEL_REDIRECTS[model_name](normalize_keys(data))
         return model.objects.filter(id=result[f'{model_name}_id']).first()