def decode(self, node, cstruct):
if isinstance(cstruct, Account):
return cstruct
if isinstance(cstruct, int):
return Account.by_id(cstruct)
if isinstance(cstruct, dict):
if cstruct.get('id'):
return Account.by_id(cstruct.get('id'))
return None
def decode(self, node, cstruct):
if isinstance(cstruct, Account):
return cstruct
if isinstance(cstruct, int):
return Account.by_id(cstruct)
if isinstance(cstruct, dict):
if cstruct.get('id'):
return Account.by_id(cstruct.get('id'))
return None
def update(id):
account = object_or_404(Account.by_id(id))
authz.require(account.id == request.account.id)
data = request_data()
account = accounts.save(data, account=account)
db.session.commit()
return jsonify(account)
def update(id):
account = object_or_404(Account.by_id(id))
authz.require(account.id==request.account.id)
data = request_data()
entity = accounts.save(data, account=account)
db.session.commit()
return jsonify(accounts.to_rest(account))
def check_auth():
api_key = request.headers.get('Authorization') \
or request.args.get('api_key')
if session.get('id'):
request.account = Account.by_id(session.get('id'))
if request.account is None:
del session['id']
raise Unauthorized()
elif api_key is not None:
request.account = Account.by_api_key(api_key)
if request.account is None:
raise Unauthorized()
else:
request.account = None
def check_auth():
api_key = request.headers.get('X-Grano-API-Key') \
or request.args.get('api_key')
if session.get('id'):
request.account = Account.by_id(session.get('id'))
if request.account is None:
del session['id']
raise Unauthorized()
elif api_key is not None:
request.account = Account.by_api_key(api_key)
if request.account is None:
raise Unauthorized()
if arg_bool('api_key_cookie'):
session['id'] = request.account.id
else:
request.account = None
def view(id):
account = object_or_404(Account.by_id(id))
return jsonify(account)
def view(id):
account = object_or_404(Account.by_id(id))
return jsonify(accounts.to_rest(account))
