Context Navigation

-                      r55470f9
+                      r78af3d1
 import gpxpy
 from repoze.folder import Folder
 from pyramid.security import Allow, Everyone
+from pyramid.security import Allow, Deny, Everyone, ALL_PERMISSIONS
 from ow.utilities import (
 …
         it (for now). If not, everybody can view it, only admins can edit it.
         """
         # Default permissions
+        uid = self.__parent__.uid
         permissions = [
+            (Allow, Everyone, 'view'),
+            (Allow, 'group:admins', 'edit')
+            (Allow, str(uid), 'view'),
+            (Allow, str(uid), 'edit'),
+            (Allow, str(uid), 'delete'),
+            (Deny, Everyone, ALL_PERMISSIONS)
+        ]
-        uid = getattr(self.__parent__, 'uid', None)
-        if uid is not None:
-            # Change permissions in case this workout has an owner
-            permissions = [
-                (Allow, str(uid), 'view'),
-                (Allow, str(uid), 'edit'),
+            ]
         return permissions

Note: See TracChangeset for help on using the changeset viewer.

Changeset 78af3d1 in OpenWorkouts-current for ow/models/workout.py