Commit b9dba54

committed

for apijson get, support case when setting inAPIJSON_MODELS only define permissions no roles

1 parent 2a4357c commit b9dba54Copy full SHA for b9dba54

File tree

3 files changed

+44

-16

lines changed

tests
- demo/apps/apijson_demo
  - settings.ini
- test.py
uliweb_apijson/apijson
- __init__.py

3 files changed

+44

-16

lines changed

`‎tests/demo/apps/apijson_demo/settings.ini‎`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -47,6 +47,7 @@ comment = {`
`47`	`47`	`"PUT" : { "roles" : ["OWNER","ADMIN"] },`
`48`	`48`	`"DELETE" : { "roles" : ["OWNER","ADMIN"] },`
`49`	`49`	`}`
	`50`	`+# only define permissions, no roles`
`50`	`51`	`comment2 = {`
`51`	`52`	`"user_id_field" : "user_id",`
`52`	`53`	`"GET" : { "permissions":["get_comment2"] },`

`‎tests/test.py‎`

Lines changed: 11 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -1764,6 +1764,17 @@ def test_apijson_permission():`
`1764`	`1764`	`>>> print(d)`
`1765`	`1765`	`{'code': 200, 'msg': 'success', 'comment2': {'user_id': 2, 'to_id': 3, 'moment_id': 1, 'date': '2018年12月01日 00:00:00', 'content': 'comment from usera to userb', 'id': 2}}`
`1766`	`1766`
	`1767`	`+ >>> #apijson get, query array`
	`1768`	`+ >>> data ='''{`
	`1769`	`+ ... "[]":{`
	`1770`	`+ ... "comment2": {"@role":"ADMIN"}`
	`1771`	`+ ... }`
	`1772`	`+ ... }'''`
	`1773`	`+ >>> r = handler.post('/apijson/get', data=data, pre_call=pre_call_as("admin"), middlewares=[])`
	`1774`	`+ >>> d = json_loads(r.data)`
	`1775`	`+ >>> print(d)`
	`1776`	+ {'code': 200, 'msg': 'success', '[]': [{'comment2': {'user_id': 1, 'to_id': 3, 'moment_id': 1, 'date': '2018年11月01日 00:00:00', 'content': 'comment from admin', 'id': 1}}, {'comment2': {'user_id': 2, 'to_id': 3, 'moment_id': 1, 'date': '2018年12月01日 00:00:00', 'content': 'comment from usera to userb', 'id': 2}}, {'comment2': {'user_id': 3, 'to_id': 2, 'moment_id': 2, 'date': '2018年12月02日 00:00:00', 'content': 'comment from userb to usera', 'id': 3}}, {'comment2': {'user_id': 4, 'to_id': 2, 'moment_id': 3, 'date': '2018年12月09日 00:00:00', 'content': 'comment from userc to usera', 'id': 4}}]}
	`1777`	`+`
`1767`	`1778`	`>>> #apijson head`
`1768`	`1779`	`>>> data ='''{`
`1769`	`1780`	`... "comment2": {`

`‎uliweb_apijson/apijson/init.py‎`

Lines changed: 32 additions & 16 deletions

Original file line number	Diff line number	Diff line change
`@@ -88,23 +88,39 @@ def _check_GET_permission(self):`
`88`	`88`
`89`	`89`	`roles = GET.get("roles")`
`90`	`90`	`params_role = self.params.get("@role")`
`91`		`-`
`92`		`- if not params_role:`
`93`		`- if hasattr(request,"user"):`
`94`		`- params_role = "LOGIN"`
	`91`	`+ user = getattr(request, "user", None)`
	`92`	`+`
	`93`	`+ if roles:`
	`94`	`+ if not params_role:`
	`95`	`+ if user:`
	`96`	`+ params_role = "LOGIN"`
	`97`	`+ else:`
	`98`	`+ params_role = "UNKNOWN"`
	`99`	`+ elif params_role != "UNKNOWN":`
	`100`	`+ if not user:`
	`101`	`+ raise UliwebError("no login user for role '%s'" % (params_role))`
	`102`	`+ if params_role not in roles:`
	`103`	`+ raise UliwebError("'%s' not accessible by role '%s'" % (self.name, params_role))`
	`104`	`+ if params_role == "UNKNOWN":`
	`105`	`+ self.permission_check_ok = True`
	`106`	`+ elif functions.has_role(user, params_role):`
	`107`	`+ self.permission_check_ok = True`
`95`	`108`	`else:`
`96`		`- params_role = "UNKNOWN"`
`97`		`- elif params_role != "UNKNOWN":`
`98`		`- if not hasattr(request,"user"):`
`99`		`- raise UliwebError("no login user for role '%s'"%(params_role))`
`100`		`- if params_role not in roles:`
`101`		`- raise UliwebError("'%s' not accessible by role '%s'"%(self.name,params_role))`
`102`		`- if params_role == "UNKNOWN":`
`103`		`- self.permission_check_ok = True`
`104`		`- elif functions.has_role(request.user,params_role):`
`105`		`- self.permission_check_ok = True`
`106`		`- else:`
`107`		`- raise UliwebError("user doesn't have role '%s'"%(params_role))`
	`109`	`+ raise UliwebError("user doesn't have role '%s'" % (params_role))`
	`110`	`+ if not self.permission_check_ok:`
	`111`	`+ perms = GET.get("permissions")`
	`112`	`+ if perms:`
	`113`	`+ if params_role:`
	`114`	`+ role, msg = functions.has_permission_as_role(user, params_role, *perms)`
	`115`	`+ if role:`
	`116`	`+ self.permission_check_ok = True`
	`117`	`+ else:`
	`118`	`+ role = functions.has_permission(user, *perms)`
	`119`	`+ if role:`
	`120`	`+ role_name = getattr(role, "name")`
	`121`	`+ if role_name:`
	`122`	`+ self.permission_check_ok = True`
	`123`	`+ params_role = role_name`
`108`	`124`
`109`	`125`	`if not self.permission_check_ok:`
`110`	`126`	`raise UliwebError("no permission")`

0 commit comments

Comments

(0)

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit b9dba54

File tree

3 files changed

3 files changed

`‎tests/demo/apps/apijson_demo/settings.ini‎`

`‎tests/test.py‎`

`‎uliweb_apijson/apijson/init.py‎`

0 commit comments

File tree

3 files changed

3 files changed

‎tests/demo/apps/apijson_demo/settings.ini‎

‎tests/test.py‎

‎uliweb_apijson/apijson/__init__.py‎

0 commit comments

`‎tests/demo/apps/apijson_demo/settings.ini‎`

`‎tests/test.py‎`

`‎uliweb_apijson/apijson/init.py‎`