FIX: Only require login for viewing RAs/ECs

FIX: Only require login to view training profiles
Previously required a specific permission only granted to keyholders
2026-02-05 22:58:21 +00:00 · 2022-11-26 12:58:15 +00:00 · 2022-11-26 12:54:42 +00:00
2 changed files with 4 additions and 6 deletions
--- a/RIGS/urls.py
+++ b/RIGS/urls.py
@@ -75,7 +75,7 @@ urlpatterns = [

    path('event/<int:pk>/ra/', permission_required_with_403('RIGS.add_riskassessment')(views.EventRiskAssessmentCreate.as_view()),
         name='event_ra'),
-    path('event/ra/<int:pk>/', permission_required_with_403('RIGS.view_riskassessment')(views.EventRiskAssessmentDetail.as_view()),
+    path('event/ra/<int:pk>/', login_required(views.EventRiskAssessmentDetail.as_view()),
         name='ra_detail'),
    path('event/ra/<int:pk>/edit/', permission_required_with_403('RIGS.change_riskassessment')(views.EventRiskAssessmentEdit.as_view()),
         name='ra_edit'),
@@ -87,7 +87,7 @@ urlpatterns = [

    path('event/<int:pk>/checklist/', permission_required_with_403('RIGS.add_eventchecklist')(views.EventChecklistCreate.as_view()),
         name='event_ec'),
-    path('event/checklist/<int:pk>/', permission_required_with_403('RIGS.view_eventchecklist')(views.EventChecklistDetail.as_view()),
+    path('event/checklist/<int:pk>/', login_required(views.EventChecklistDetail.as_view()),
         name='ec_detail'),
    path('event/checklist/<int:pk>/edit/', permission_required_with_403('RIGS.change_eventchecklist')(views.EventChecklistEdit.as_view()),
         name='ec_edit'),
--- a/training/urls.py
+++ b/training/urls.py
@@ -2,7 +2,6 @@ from django.urls import path

 from django.contrib.auth.decorators import login_required
 from training.decorators import is_supervisor
-from PyRIGS.decorators import permission_required_with_403

 from training import views, models
 from versioning.views import VersionHistory
@@ -12,10 +11,9 @@ urlpatterns = [
    path('item/<int:pk>/qualified_users/', login_required(views.ItemQualifications.as_view()), name='item_qualification'),

    path('trainee/list/', login_required(views.TraineeList.as_view()), name='trainee_list'),
-    path('trainee/<int:pk>/',
-         permission_required_with_403('RIGS.view_profile')(views.TraineeDetail.as_view()),
+    path('trainee/<int:pk>/', login_required(views.TraineeDetail.as_view()),
         name='trainee_detail'),
-    path('trainee/<int:pk>/history', permission_required_with_403('RIGS.view_profile')(VersionHistory.as_view()), name='trainee_history', kwargs={'model': models.Trainee, 'app': 'training'}),  # Not picked up automatically because proxy model (I think)
+    path('trainee/<int:pk>/history', login_required(VersionHistory.as_view()), name='trainee_history', kwargs={'model': models.Trainee, 'app': 'training'}),  # Not picked up automatically because proxy model (I think)
    path('trainee/<int:pk>/add_qualification/', is_supervisor()(views.AddQualification.as_view()),
         name='add_qualification'),
    path('trainee/edit_qualification/<int:pk>/', is_supervisor()(views.EditQualification.as_view()),
Author	SHA1	Message	Date
Arona Jones	fa1dc31639	FIX: Only require login for viewing RAs/ECs	2022-11-26 12:58:15 +00:00
Arona Jones	d69543e309	FIX: Only require login to view training profiles Previously required a specific permission only granted to keyholders	2022-11-26 12:54:42 +00:00