zcdsj
/
Recruitment_site
5
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
48 Commits 2 Branches 0 Tags 337 KiB
Commit Graph

4 Commits

Author SHA1 Message Date
TianyangZhang 54230b6cfd fix(admin): 简化附件下载,直接使用Django媒体代理 2026-03-25 16:38:25 +08:00
TianyangZhang 79706dd840 fix(admin): 通过API端点下载简历附件,解决HTML问题 2026-03-25 16:35:43 +08:00
TianyangZhang 619ca19f87 fix: prevent IDOR in application status update endpoint 
Replace class-level queryset attribute with get_queryset() method that
scopes Application objects to the requesting admin's organization,
preventing regular admins from modifying applications belonging to
other organizations via pk enumeration.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-25 08:31:31 +08:00
TianyangZhang 0ccd943255 feat: add Application model with status tracking and email notifications 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-24 17:46:14 +08:00