fix: Enum is not extensible

chriscarrollsmith · chriscarrollsmith · commit b3ff7cb2e6e4 · 2025-10-23T11:27:17.000-04:00
diff --git a/docs/customization.qmd b/docs/customization.qmd
@@ -258,7 +258,7 @@ organization = session.exec(select(Organization).where(Organization.name == "Acm
 user.has_permission(permission, organization)
 ```
 
-You should create custom `AppPermissions` enum values for your application in `utils/app/` (if needed) and validate that users have the necessary permissions before allowing them to modify organization data resources.
+You can add custom permission enum values to the `ValidPermissions` enum in `utils/core/enums.py` (below the core permissions section) and validate that users have the necessary permissions before allowing them to modify organization data resources.
 
 ### Cascade deletes
 
diff --git a/utils/app/enums.py b/utils/app/enums.py
diff --git a/utils/core/enums.py b/utils/core/enums.py
@@ -1,11 +1,20 @@
-from utils.app.enums import AppPermissions
+from enum import Enum
 
-class ValidPermissions(AppPermissions):
+
+class ValidPermissions(Enum):
+    """
+    Core permissions - do not modify these:
+    """
     DELETE_ORGANIZATION = "Delete Organization"
     EDIT_ORGANIZATION = "Edit Organization"
     INVITE_USER = "Invite User"
     REMOVE_USER = "Remove User"
     EDIT_USER_ROLE = "Edit User Role"
     CREATE_ROLE = "Create Role"
     DELETE_ROLE = "Delete Role"
-    EDIT_ROLE = "Edit Role"
+    EDIT_ROLE = "Edit Role"
+
+    # Add additional app-specific permissions below this line:
+    READ_ORGANIZATION_RESOURCES = "Read Organization Resources"
+    WRITE_ORGANIZATION_RESOURCES = "Write Organization Resources"
+    DELETE_ORGANIZATION_RESOURCES = "Delete Organization Resources"
