46 lines
1.3 KiB
Python
46 lines
1.3 KiB
Python
from datetime import datetime
|
|
|
|
from fastapi import APIRouter, Depends
|
|
from pydantic import BaseModel
|
|
from typing import Optional
|
|
|
|
from backend.services.permission.permission_service import PermissionService
|
|
from common.token.token_manager import TokenManager
|
|
|
|
|
|
router = APIRouter()
|
|
token_manager = TokenManager()
|
|
permission_service = PermissionService()
|
|
|
|
|
|
class UpdatePermissionRequest(BaseModel):
|
|
permission_id: str
|
|
permission_key: str
|
|
permission_name: str
|
|
description: Optional[str] = None
|
|
|
|
|
|
class PermissionResponse(BaseModel):
|
|
id: str
|
|
permission_key: str
|
|
permission_name: str
|
|
description: Optional[str] = None
|
|
created_at: datetime
|
|
updated_at: datetime
|
|
|
|
|
|
@router.post(
|
|
"/update",
|
|
response_model=PermissionResponse,
|
|
operation_id="update-permission",
|
|
summary="Update Permission",
|
|
description="Update an existing permission by id. Only Admin role allowed."
|
|
)
|
|
async def update_permission(
|
|
req: UpdatePermissionRequest,
|
|
#_: bool = Depends(token_manager.has_all_permissions([DefaultPermissionEnum.CHANGE_PERMISSIONS.value.permission_key]))
|
|
) -> PermissionResponse:
|
|
doc = await permission_service.update_permission(req.permission_id, req.permission_key, req.permission_name,
|
|
req.description)
|
|
return PermissionResponse(**doc.model_dump())
|