Exporters: Give access to authentication infos and allow empty permissions (#5979)

* Exporters: Give access to authentication infos * Allow exporters to have empty permission * Use a protocol
2026-04-02 15:44:36 +02:00
parent 84e12fea32
commit d411c36414
5 changed files with 50 additions and 8 deletions
--- a/src/pretix/base/services/export.py
+++ b/src/pretix/base/services/export.py
@@ -211,7 +211,12 @@ def init_event_exporters(event, user=None, token=None, device=None, request=None
        if not perm_holder.has_event_permission(event.organizer, event, permission_name, request) and not staff_session:
            continue

-        exporter: BaseExporter = response(event=event, organizer=event.organizer, **kwargs)
+        exporter: BaseExporter = response(
+            event=event,
+            organizer=event.organizer,
+            permission_holder=token or device or user,
+            **kwargs
+        )

        if not exporter.available_for_user(user if user and user.is_authenticated else None):
            continue
@@ -243,7 +248,12 @@ def init_organizer_exporters(
            continue

        if issubclass(response, OrganizerLevelExportMixin):
-            exporter: BaseExporter = response(event=Event.objects.none(), organizer=organizer, **kwargs)
+            exporter: BaseExporter = response(
+                event=Event.objects.none(),
+                organizer=organizer,
+                permission_holder=token or device or user,
+                **kwargs,
+            )

            try:
                if not perm_holder.has_organizer_permission(organizer, response.get_required_organizer_permission(), request) and not staff_session:
@@ -295,7 +305,12 @@ def init_organizer_exporters(
            if not _has_permission_on_any_team_cache[permission_name] and not staff_session:
                continue

-            exporter: BaseExporter = response(event=_event_list_cache[permission_name], organizer=organizer, **kwargs)
+            exporter: BaseExporter = response(
+                event=_event_list_cache[permission_name],
+                organizer=organizer,
+                permission_holder=token or device or user,
+                **kwargs,
+            )

        if not exporter.available_for_user(user if user and user.is_authenticated else None):
            continue