How to change permission based on request.query_params in Django rest frameworks?

python django django-rest-framework

I merged together two views that almost does the same thing except the permission, I want to change permission based on: if company id is in the params. If not, it would use a simple IsAuthenticated class and also created a permission for IsCompany.

class FilesView(ListAPIView):
    serializer_class = FileSerializer
    permission_classes = (IsAuthenticated,)
    ...
    
    def get_queryset(self):
        if 'company' in self.request.query_params:
            # In this case I want the IsCompany Permission class
            return get_company_files(self)
        # Otherwise the regular one
        return get_personal_files(self)

See custom permissions at DRF documentations.

A little example:

from rest_framework import permissions

class IsCompanyRequestBasedPermission(permissions.BasePermission):
    message = '<description of your permission>'

    def has_permission(self, request, view):
        if 'company' in self.request.query_params:
            # Make your decision.

And then add it to permission_classes. It would work just as you expect.

Related

Azure Devops Pipeline returning: 'Failed to deploy web package to App Service. Internal Server Error (CODE: 500)'
DocumentsUI shows "Anonymous" application when requesting access to directory
Centered background image within SVG
Puppeteer deployed to Heroku (Ubuntu) does not download PDF using Times New Roman font
How to group by a custom date (month, day, year) range and create seasons across the time group and get summary?
How to assign default modifiers to a SwiftUI view?
Gently kill a process created with Python's subprocess.Popen() in Windows
Java XPath Compile can't query tag with unique namespace
What is a reverse shell? [closed]
Will an iPad with more RAM experience fewer app suspensions? [closed]
iPad not accepting Apple ID
How to delete System Extension BridgeAudioController.kext on Mac M1 running Big Sur? [duplicate]