45586 refactor(queryset): Rename permission queryset method to explicitly include OWNER role

EBirkenfeld · EBirkenfeld · commit 9fd3c49659bf · 2026-04-01T00:23:35.000+05:00
diff --git a/backend/src/processes/permissions.py b/backend/src/processes/permissions.py
@@ -171,7 +171,7 @@ def has_permission(self, request, view):
                 pk=workflow_id,
                 account_id=request.user.account_id,
             )
-            .with_viewer_or_started_by_starter(request.user.id)
+            .with_owner_viewer_or_started_by_starter(request.user.id)
             .exists()
         )
 
@@ -362,7 +362,7 @@ def has_permission(self, request, view):
                 tasks__id=task_id,
                 account_id=request.user.account_id,
             )
-            .with_viewer_or_started_by_starter(request.user.id)
+            .with_owner_viewer_or_started_by_starter(request.user.id)
             .exists()
         )
 
@@ -406,7 +406,11 @@ def has_permission(self, request, view):
             return True
 
         # Check template owner, viewer or starter who started workflow
-        return base_qst.with_viewer_or_started_by_starter(user_id).exists()
+        return (
+            base_qst
+            .with_owner_viewer_or_started_by_starter(user_id)
+            .exists()
+        )
 
 
 class WorkflowCommentPermission(BasePermission):
@@ -445,7 +449,11 @@ def has_permission(self, request, view):
             return True
 
         # Check template owner, viewer or starter who started workflow
-        return base_qst.with_viewer_or_started_by_starter(user_id).exists()
+        return (
+            base_qst
+            .with_owner_viewer_or_started_by_starter(user_id)
+            .exists()
+        )
 
 
 class GuestWorkflowPermission(BasePermission):
@@ -622,7 +630,7 @@ def has_permission(self, request, view):
             Workflow.objects
             .by_id(workflow_id)
             .on_account(user.account_id)
-            .with_viewer_or_started_by_starter(user.id)
+            .with_owner_viewer_or_started_by_starter(user.id)
             .exists()
         )
 
diff --git a/backend/src/processes/querysets.py b/backend/src/processes/querysets.py
@@ -448,7 +448,7 @@ def with_template_access(self, user_id: int):
             ),
         ).distinct()
 
-    def with_viewer_or_started_by_starter(self, user_id: int):
+    def with_owner_viewer_or_started_by_starter(self, user_id: int):
         base_owner_q = Q(template__owners__is_deleted=False) & (
             Q(
                 template__owners__type=OwnerType.USER,
