本文整理汇总了Python中ckan.authz.Authorizer类的典型用法代码示例。如果您正苦于以下问题:Python Authorizer类的具体用法?Python Authorizer怎么用?Python Authorizer使用的例子?那么恭喜您, 这里精选的类代码示例或许可以为您提供帮助。
在下文中一共展示了Authorizer类的15个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的Python代码示例。
示例1: group_create
def group_create(context, data_dict=None):
"""
Group create permission. If a group is provided, within which we want to create a group
then we check that the user is within that group. If not then we just say Yes for now
although there may be some approval issues elsewhere.
"""
model = context['model']
user = context['user']
if not model.User.get(user):
return {'success': False, 'msg': _('User is not authorized to create groups') }
if Authorizer.is_sysadmin(user):
return {'success': True}
try:
# If the user is doing this within another group then we need to make sure that
# the user has permissions for this group.
group = get_group_object( context )
except logic.NotFound:
return { 'success' : True }
userobj = model.User.get( user )
if not userobj:
return {'success': False, 'msg': _('User %s not authorized to create groups') % str(user)}
authorized = _groups_intersect( userobj.get_groups('organization'), [group] )
if not authorized:
return {'success': False, 'msg': _('User %s not authorized to create groups') % str(user)}
else:
return {'success': True}示例2: am_authorized
def am_authorized(c, action, domain_object=None):
''' Deprecated. Please use check_access instead'''
from ckan.authz import Authorizer
if domain_object is None:
from ckan import model
domain_object = model.System()
return Authorizer.am_authorized(c, action, domain_object)示例3: ignore_not_package_admin
def ignore_not_package_admin(key, data, errors, context):
'''Ignore if the user is not allowed to administer the package specified.'''
model = context['model']
user = context.get('user')
if 'ignore_auth' in context:
return
if user and Authorizer.is_sysadmin(user):
return
authorized = False
pkg = context.get('package')
if pkg:
try:
check_access('package_change_state',context)
authorized = True
except NotAuthorized:
authorized = False
if (user and pkg and authorized):
return
data.pop(key)示例4: ignore_not_package_admin
def ignore_not_package_admin(key, data, errors, context):
'''Ignore if the user is not allowed to administer the package specified.'''
model = context['model']
user = context.get('user')
if 'ignore_auth' in context:
return
if user and Authorizer.is_sysadmin(user):
return
authorized = False
pkg = context.get('package')
if pkg:
try:
check_access('package_change_state',context)
authorized = True
except NotAuthorized:
authorized = False
if (user and pkg and authorized):
return
# allow_state_change in the context will allow the state to be changed
# FIXME is this the best way to cjeck for state only?
if key == ('state',) and context.get('allow_state_change'):
return
data.pop(key)示例5: test_index
def test_index(self):
offset = url_for(controller='authorization_group')
res = self.app.get(offset, extra_environ={'REMOTE_USER': 'russianfan'})
assert '<h2>Authorization Groups</h2>' in res, res
group_count = Authorizer.authorized_query(u'russianfan', model.AuthorizationGroup).count()
assert 'There are %s authorization groups.' % group_count in self.strip_tags(res), res
authz_groupname = u'treasury'
authz_group = model.AuthorizationGroup.by_name(unicode(authz_groupname))
group_users_count = len(authz_group.users)
self.check_named_element(res, 'tr', authz_groupname, group_users_count)示例6: group_list_authz
def group_list_authz(context, data_dict):
'''
Returns a list of groups which the user is allowed to edit
If 'available_only' is specified, the existing groups in the package are
removed.
'''
model = context['model']
user = context['user']
available_only = data_dict.get('available_only',False)
check_access('group_list_authz',context, data_dict)
query = Authorizer().authorized_query(user, model.Group, model.Action.EDIT)
groups = set(query.all())
if available_only:
package = context.get('package')
if package:
groups = groups - set(package.get_groups())
return [{'id':group.id,'name':group.name} for group in groups]示例7: group_list_authz
def group_list_authz(context, data_dict):
"""
Returns a list of groups which the user is allowed to edit
If 'available_only' is specified, the existing groups in the package are
removed.
"""
model = context["model"]
user = context["user"]
available_only = data_dict.get("available_only", False)
check_access("group_list_authz", context, data_dict)
query = Authorizer().authorized_query(user, model.Group, model.Action.EDIT)
groups = set(query.all())
if available_only:
package = context.get("package")
if package:
groups = groups - set(package.groups)
return [{"id": group.id, "name": group.name} for group in groups]示例8: ignore_not_admin
def ignore_not_admin(key, data, errors, context):
model = context['model']
user = context.get('user')
if user and Authorizer.is_sysadmin(user):
return
pkg = context.get('package')
if (user and pkg and
Authorizer().is_authorized(user, model.Action.CHANGE_STATE, pkg)):
return
data.pop(key)示例9: ignore_not_admin
def ignore_not_admin(key, data, errors, context):
model = context['model']
user = context.get('user')
if user and Authorizer.is_sysadmin(user):
return
authorized = False
pkg = context.get('package')
if pkg:
try:
check_access('package_change_state',context)
authorized = True
except NotAuthorized:
authorized = False
if (user and pkg and authorized):
return
data.pop(key)示例10: ignore_not_group_admin
def ignore_not_group_admin(key, data, errors, context):
'''Ignore if the user is not allowed to administer for the group specified.'''
model = context['model']
user = context.get('user')
if user and Authorizer.is_sysadmin(user):
return
authorized = False
group = context.get('group')
if group:
try:
check_access('group_change_state',context)
authorized = True
except NotAuthorized:
authorized = False
if (user and group and authorized):
return
data.pop(key)示例11: activity_create
def activity_create(context, data_dict):
user = context['user']
return {'success': Authorizer.is_sysadmin(user)}示例12: tag_delete
def tag_delete(context, data_dict):
user = context['user']
return {'success': Authorizer.is_sysadmin(user)}示例13: vocabulary_update
def vocabulary_update(context, data_dict):
user = context['user']
return {'success': Authorizer.is_sysadmin(user)}示例14: test_system_edit_authorized
def test_system_edit_authorized(self):
authorizer = Authorizer()
auth_for_create = authorizer.is_authorized(\
u'johndoe', model.Action.PACKAGE_CREATE, model.System())
assert not auth_for_create示例15: am_authorized
def am_authorized(c, action, domain_object=None):
from ckan.authz import Authorizer
if domain_object is None:
from ckan import model
domain_object = model.System()
return Authorizer.am_authorized(c, action, domain_object)