Commit f4b1fd9d authored by Marc Duez's avatar Marc Duez

server : custom patient > display only authorized config

parent 675cbb67
......@@ -116,6 +116,7 @@ def custom():
q = ((auth.accessible_query('read', db.patient) | auth.accessible_query('admin', db.patient) )
& (auth.accessible_query('read', db.config) | auth.accessible_query('admin', db.config) )
& (db.sequence_file.patient_id==db.patient.id)
& (db.results_file.sequence_file_id==db.sequence_file.id)
& (db.results_file.scheduler_task_id==db.scheduler_task.id)
......
......@@ -29,7 +29,7 @@
'filter' : '{{=request.vars["filter"]}}',
'custom_list' : db.getListInput('custom_result[]') })">
<option value="-1" {{if not config :}}selected{{pass}}> --- </option>
{{for row in db(db.config).select(orderby=~db.config.name) :}}
{{for row in db((auth.accessible_query('read', db.config) | auth.accessible_query('admin', db.config) ) ).select(orderby=~db.config.name) :}}
<option value="{{=row.id }}" {{if row.id==config_id:}}selected{{pass}} >
{{=row.name}}
</option>
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment