Add a "protected" attribute to the label model. Prevent events that include this label from creation, modification and deletion.
Implementation steps:
Add protected = BooleanField() to class Label(Document).
Add "protected": fields.Boolean to label_model in label_resources.py
The methods in event_resources.py query whether any labels are protected. If so, they abort with a 401 status.
There is probably a simple mongodb query (using aggregates?) to query all the labels in a list of strings, project their protected attributes, and compute the "or" of those values. Maybe there is also a way to express this in mongoengine.
This issue disables any modification to protected events. #239 re-enables access for administrators.
Add a "protected" attribute to the label model. Prevent events that include this label from creation, modification and deletion.
Implementation steps:
protected = BooleanField()to classLabel(Document)."protected": fields.Booleantolabel_modelinlabel_resources.pyevent_resources.pyquery whether any labels are protected. If so, they abort with a 401 status.There is probably a simple mongodb query (using aggregates?) to query all the labels in a list of strings, project their
protectedattributes, and compute the "or" of those values. Maybe there is also a way to express this in mongoengine.This issue disables any modification to protected events. #239 re-enables access for administrators.