def grant_experiment_on_group(sessionmaker, category_name, experiment_name, group_name, time_allowed):
sessionmaker._model_changes = {} # flask-sqlalchemy bug bypass
session = sessionmaker()
group = session.query(model.DbGroup).filter_by(name = group_name).one()
experiment_allowed = permissions.EXPERIMENT_ALLOWED
experiment_allowed_p1 = permissions.EXPERIMENT_PERMANENT_ID
experiment_allowed_p2 = permissions.EXPERIMENT_CATEGORY_ID
experiment_allowed_p3 = permissions.TIME_ALLOWED
group_permission = model.DbGroupPermission(
group, experiment_allowed,
"%s users::%s@%s" % (group_name, experiment_name, category_name),
datetime.datetime.utcnow(),
"Permission for group %s users to use %s@%s" % (group_name, experiment_name, category_name))
session.add(group_permission)
group_permission_p1 = model.DbGroupPermissionParameter(group_permission, experiment_allowed_p1, experiment_name)
session.add(group_permission_p1)
group_permission_p2 = model.DbGroupPermissionParameter(group_permission, experiment_allowed_p2, category_name)
session.add(group_permission_p2)
group_permission_p3 = model.DbGroupPermissionParameter(group_permission, experiment_allowed_p3, str(time_allowed))
session.add(group_permission_p3)
session.commit()
session.close()
def grant_on_access_forward_to_group(self, group, permission_type,
permanent_id, date, comments):
try:
group_permission = Model.DbGroupPermission(
group, permission_type.group_applicable, permanent_id, date,
comments)
self.session.add(group_permission)
self.session.commit()
return group_permission
except IntegrityError:
return None
def grant_on_admin_panel_to_group(self, group, permission_type,
permanent_id, date, comments):
try:
group_permission = Model.DbGroupPermission(
group, permission_type.group_applicable, permanent_id, date,
comments)
self.session.add(group_permission)
group_permission_p1 = Model.DbGroupPermissionParameter(
group_permission,
permission_type.get_parameter("full_privileges"), True)
self.session.add(group_permission_p1)
self.session.commit()
return group_permission
except IntegrityError:
return None
def grant_admin_panel_on_group(sessionmaker, group_name):
session = sessionmaker()
permission_type = permissions.ADMIN_PANEL_ACCESS
group = session.query(model.DbGroup).filter_by(name = group_name).one()
group_permission = model.DbGroupPermission(
group,
permission_type,
'Administrators:admin-panel', datetime.datetime.now(), ''
)
session.add(group_permission)
group_permission_p1 = model.DbGroupPermissionParameter(
group_permission,
permissions.FULL_PRIVILEGES,
True
)
session.add(group_permission_p1)
session.commit()
session.close()
def _grant_permission_to_group(session, groups_data, experiments_data, group_name, exp_name, cat_name, time):
if (exp_name, cat_name) not in experiments_data:
raise Exception("Error: %s@%s not previously registered" % (exp_name, cat_name))
db_group = groups_data[group_name]
gp_allowed = model.DbGroupPermission(
db_group,
permissions.EXPERIMENT_ALLOWED,
"%s::%s" % (group_name, exp_name),
datetime.datetime.utcnow(),
"Permission for group %s to use %s" % (group_name, exp_name)
)
session.add(gp_allowed)
gp_allowed_p1 = model.DbGroupPermissionParameter(gp_allowed, permissions.EXPERIMENT_PERMANENT_ID, exp_name)
session.add(gp_allowed_p1)
gp_allowed_p2 = model.DbGroupPermissionParameter(gp_allowed, permissions.EXPERIMENT_CATEGORY_ID, cat_name)
session.add(gp_allowed_p2)
gp_allowed_p3 = model.DbGroupPermissionParameter(gp_allowed, permissions.TIME_ALLOWED, six.text_type(time))
session.add(gp_allowed_p3)
def grant_on_experiment_to_group(self, group, permission_type,
permanent_id, date, comments, experiment,
time_allowed, priority,
initialization_in_accounting):
try:
group_permission = Model.DbGroupPermission(
group, permission_type.group_applicable, permanent_id, date,
comments)
self.session.add(group_permission)
group_permission_p1 = Model.DbGroupPermissionParameter(
group_permission,
permission_type.get_parameter("experiment_permanent_id"),
experiment.name)
self.session.add(group_permission_p1)
group_permission_p2 = Model.DbGroupPermissionParameter(
group_permission,
permission_type.get_parameter("experiment_category_id"),
experiment.category.name)
self.session.add(group_permission_p2)
group_permission_p3 = Model.DbGroupPermissionParameter(
group_permission,
permission_type.get_parameter("time_allowed"), time_allowed)
self.session.add(group_permission_p3)
group_permission_p4 = Model.DbGroupPermissionParameter(
group_permission, permission_type.get_parameter("priority"),
priority)
self.session.add(group_permission_p4)
group_permission_p5 = Model.DbGroupPermissionParameter(
group_permission,
permission_type.get_parameter("initialization_in_accounting"),
initialization_in_accounting)
self.session.add(group_permission_p5)
self.session.commit()
return group_permission
except IntegrityError:
return None
def test_model(self):
#
# Create objects
#
auth_type = Model.DbAuthType("DB")
permission_type = permissions.EXPERIMENT_ALLOWED
permission_type_p1 = permissions.EXPERIMENT_PERMANENT_ID
permission_type_p2 = permissions.EXPERIMENT_CATEGORY_ID
permission_type_p3 = permissions.TIME_ALLOWED
auth = Model.DbAuth(auth_type, "WebLab DB", 1)
role = Model.DbRole("administrator")
user = Model.DbUser("admin1", "Name of administrator 1",
"*****@*****.**", None, role)
group = Model.DbGroup("5A")
user_permission = Model.DbUserPermission(
user, permission_type, "student2::weblab-pld",
datetime.datetime.utcnow(),
"Permission for student2 to use WebLab-PLD")
user_permission_p1 = Model.DbUserPermissionParameter(
user_permission, permission_type_p1, "ud-pld")
user_permission_p2 = Model.DbUserPermissionParameter(
user_permission, permission_type_p2, "PLD experiments")
user_permission_p3 = Model.DbUserPermissionParameter(
user_permission, permission_type_p3, "100")
group_permission = Model.DbGroupPermission(
group, permission_type, "5A::weblab-dummy",
datetime.datetime.utcnow(),
"Permission for group 5A to use WebLab-Dummy")
group_permission_p1 = Model.DbGroupPermissionParameter(
group_permission, permission_type_p1, "ud-dummy")
group_permission_p2 = Model.DbGroupPermissionParameter(
group_permission, permission_type_p2, "Dummy experiments")
group_permission_p3 = Model.DbGroupPermissionParameter(
group_permission, permission_type_p3, "300")
role_permission = Model.DbRolePermission(
role, permission_type, "administrator::weblab-dummy",
datetime.datetime.utcnow(),
"Permission for administrator to use WebLab-Dummy")
role_permission_p1 = Model.DbRolePermissionParameter(
role_permission, permission_type_p1, "ud-dummy")
role_permission_p2 = Model.DbRolePermissionParameter(
role_permission, permission_type_p2, "Dummy experiments")
role_permission_p3 = Model.DbRolePermissionParameter(
role_permission, permission_type_p3, "300")
#
# Method __repr__()
#
variables = locals()
variables.pop("self")
for k in variables.keys():
repr(eval(k))
#
# Method DbAuth.get_config_value()
#
auth.configuration = "param1=value1;param2=value2"
self.assertEquals("value1", auth.get_config_value("param1"))
self.assertEquals("value2", auth.get_config_value("param2"))
#
# Method Db(User|Group|Role)Permission.get_permission_type()
#
self.assertEquals(permission_type,
user_permission.get_permission_type())
self.assertEquals(permission_type,
group_permission.get_permission_type())
self.assertEquals(permission_type,
role_permission.get_permission_type())
#
# Method Db(User|Group|Role)Permission.get_parameter()
#
self.assertEquals(
user_permission_p1,
user_permission.get_parameter("experiment_permanent_id"))
self.assertEquals(
user_permission_p2,
user_permission.get_parameter("experiment_category_id"))
self.assertEquals(user_permission_p3,
user_permission.get_parameter("time_allowed"))
self.assertEquals(
group_permission_p1,
group_permission.get_parameter("experiment_permanent_id"))
self.assertEquals(
group_permission_p2,
group_permission.get_parameter("experiment_category_id"))
self.assertEquals(group_permission_p3,
group_permission.get_parameter("time_allowed"))
self.assertEquals(
role_permission_p1,
role_permission.get_parameter("experiment_permanent_id"))
self.assertEquals(
role_permission_p2,
role_permission.get_parameter("experiment_category_id"))
self.assertEquals(role_permission_p3,
role_permission.get_parameter("time_allowed"))
#
# Method Db(User|Group|Role)PermissionParameter.get_name()
#
self.assertEquals("experiment_permanent_id",
user_permission_p1.get_name())
self.assertEquals("experiment_category_id",
user_permission_p2.get_name())
self.assertEquals("time_allowed", user_permission_p3.get_name())
self.assertEquals("experiment_permanent_id",
group_permission_p1.get_name())
self.assertEquals("experiment_category_id",
group_permission_p2.get_name())
self.assertEquals("time_allowed", group_permission_p3.get_name())
self.assertEquals("experiment_permanent_id",
role_permission_p1.get_name())
self.assertEquals("experiment_category_id",
role_permission_p2.get_name())
self.assertEquals("time_allowed", role_permission_p3.get_name())
#
# Method Db(User|Group|Role)PermissionParameter.get_datatype()
#
self.assertEquals("string", user_permission_p1.get_datatype())
self.assertEquals("string", user_permission_p2.get_datatype())
self.assertEquals("float", user_permission_p3.get_datatype())
self.assertEquals("string", group_permission_p1.get_datatype())
self.assertEquals("string", group_permission_p2.get_datatype())
self.assertEquals("float", group_permission_p3.get_datatype())
self.assertEquals("string", role_permission_p1.get_datatype())
self.assertEquals("string", role_permission_p2.get_datatype())
self.assertEquals("float", role_permission_p3.get_datatype())
def test_model(self):
#
# Create objects
#
auth_type = Model.DbAuthType("DB")
permission_type = Model.DbPermissionType(
'experiment_allowed',
'This type has a parameter which is the permanent ID (not a INT) of an Experiment. Users which have this permission will have access to the experiment defined in this parameter',
user_applicable=True,
group_applicable=True,
role_applicable=True,
ee_applicable=True)
permission_type_p1 = Model.DbPermissionTypeParameter(
permission_type, 'experiment_permanent_id', 'string',
'the unique name of the experiment')
permission_type_p2 = Model.DbPermissionTypeParameter(
permission_type, 'experiment_category_id', 'string',
'the unique name of the category of experiment')
permission_type_p3 = Model.DbPermissionTypeParameter(
permission_type, 'time_allowed', 'float',
'Time allowed (in seconds)')
auth = Model.DbAuth(auth_type, "WebLab DB", 1)
role = Model.DbRole("administrator")
user = Model.DbUser("admin1", "Name of administrator 1",
"*****@*****.**", None, role)
ee = Model.DbExternalEntity("ee1", "Country of ee1",
"Description of ee1", "*****@*****.**",
"password")
group = Model.DbGroup("5A")
user_permission = Model.DbUserPermission(
user, permission_type.group_applicable, "student2::weblab-pld",
datetime.datetime.utcnow(),
"Permission for student2 to use WebLab-PLD")
user_permission_p1 = Model.DbUserPermissionParameter(
user_permission, permission_type_p1, "ud-pld")
user_permission_p2 = Model.DbUserPermissionParameter(
user_permission, permission_type_p2, "PLD experiments")
user_permission_p3 = Model.DbUserPermissionParameter(
user_permission, permission_type_p3, "100")
group_permission = Model.DbGroupPermission(
group, permission_type.group_applicable, "5A::weblab-dummy",
datetime.datetime.utcnow(),
"Permission for group 5A to use WebLab-Dummy")
group_permission_p1 = Model.DbGroupPermissionParameter(
group_permission, permission_type_p1, "ud-dummy")
group_permission_p2 = Model.DbGroupPermissionParameter(
group_permission, permission_type_p2, "Dummy experiments")
group_permission_p3 = Model.DbGroupPermissionParameter(
group_permission, permission_type_p3, "300")
role_permission = Model.DbRolePermission(
role, permission_type.role_applicable,
"administrator::weblab-dummy", datetime.datetime.utcnow(),
"Permission for administrator to use WebLab-Dummy")
role_permission_p1 = Model.DbRolePermissionParameter(
role_permission, permission_type_p1, "ud-dummy")
role_permission_p2 = Model.DbRolePermissionParameter(
role_permission, permission_type_p2, "Dummy experiments")
role_permission_p3 = Model.DbRolePermissionParameter(
role_permission, permission_type_p3, "300")
ee_permission = Model.DbExternalEntityPermission(
ee, permission_type.ee_applicable, "ee1::weblab-dummy",
datetime.datetime.utcnow(),
"Permission for ee1 to use WebLab-Dummy")
ee_permission_p1 = Model.DbExternalEntityPermissionParameter(
ee_permission, permission_type_p1, "ud-dummy")
ee_permission_p2 = Model.DbExternalEntityPermissionParameter(
ee_permission, permission_type_p2, "Dummy experiments")
ee_permission_p3 = Model.DbExternalEntityPermissionParameter(
ee_permission, permission_type_p3, "300")
#
# Method __repr__()
#
variables = locals()
variables.pop("self")
for k in variables.keys():
repr(eval(k))
#
# Method DbAuth.get_config_value()
#
auth.configuration = "param1=value1;param2=value2"
self.assertEquals("value1", auth.get_config_value("param1"))
self.assertEquals("value2", auth.get_config_value("param2"))
#
# Method DbPermissionType.get_parameter()
#
self.assertEquals(
permission_type_p1,
permission_type.get_parameter("experiment_permanent_id"))
self.assertEquals(
permission_type_p2,
permission_type.get_parameter("experiment_category_id"))
self.assertEquals(permission_type_p3,
permission_type.get_parameter("time_allowed"))
#
# Method Db(User|Group|Role|ExternalEntity)Permission.get_permission_type()
#
self.assertEquals(permission_type,
user_permission.get_permission_type())
self.assertEquals(permission_type,
group_permission.get_permission_type())
self.assertEquals(permission_type,
role_permission.get_permission_type())
self.assertEquals(permission_type, ee_permission.get_permission_type())
#
# Method Db(User|Group|Role|ExternalEntity)Permission.get_parameter()
#
self.assertEquals(
user_permission_p1,
user_permission.get_parameter("experiment_permanent_id"))
self.assertEquals(
user_permission_p2,
user_permission.get_parameter("experiment_category_id"))
self.assertEquals(user_permission_p3,
user_permission.get_parameter("time_allowed"))
self.assertEquals(
group_permission_p1,
group_permission.get_parameter("experiment_permanent_id"))
self.assertEquals(
group_permission_p2,
group_permission.get_parameter("experiment_category_id"))
self.assertEquals(group_permission_p3,
group_permission.get_parameter("time_allowed"))
self.assertEquals(
role_permission_p1,
role_permission.get_parameter("experiment_permanent_id"))
self.assertEquals(
role_permission_p2,
role_permission.get_parameter("experiment_category_id"))
self.assertEquals(role_permission_p3,
role_permission.get_parameter("time_allowed"))
self.assertEquals(
ee_permission_p1,
ee_permission.get_parameter("experiment_permanent_id"))
self.assertEquals(
ee_permission_p2,
ee_permission.get_parameter("experiment_category_id"))
self.assertEquals(ee_permission_p3,
ee_permission.get_parameter("time_allowed"))
#
# Method Db(User|Group|Role|ExternalEntity)PermissionParameter.get_name()
#
self.assertEquals("experiment_permanent_id",
user_permission_p1.get_name())
self.assertEquals("experiment_category_id",
user_permission_p2.get_name())
self.assertEquals("time_allowed", user_permission_p3.get_name())
self.assertEquals("experiment_permanent_id",
group_permission_p1.get_name())
self.assertEquals("experiment_category_id",
group_permission_p2.get_name())
self.assertEquals("time_allowed", group_permission_p3.get_name())
self.assertEquals("experiment_permanent_id",
role_permission_p1.get_name())
self.assertEquals("experiment_category_id",
role_permission_p2.get_name())
self.assertEquals("time_allowed", role_permission_p3.get_name())
self.assertEquals("experiment_permanent_id",
ee_permission_p1.get_name())
self.assertEquals("experiment_category_id",
ee_permission_p2.get_name())
self.assertEquals("time_allowed", ee_permission_p3.get_name())
#
# Method Db(User|Group|Role|ExternalEntity)PermissionParameter.get_datatype()
#
self.assertEquals("string", user_permission_p1.get_datatype())
self.assertEquals("string", user_permission_p2.get_datatype())
self.assertEquals("float", user_permission_p3.get_datatype())
self.assertEquals("string", group_permission_p1.get_datatype())
self.assertEquals("string", group_permission_p2.get_datatype())
self.assertEquals("float", group_permission_p3.get_datatype())
self.assertEquals("string", role_permission_p1.get_datatype())
self.assertEquals("string", role_permission_p2.get_datatype())
self.assertEquals("float", role_permission_p3.get_datatype())
self.assertEquals("string", ee_permission_p1.get_datatype())
self.assertEquals("string", ee_permission_p2.get_datatype())
self.assertEquals("float", ee_permission_p3.get_datatype())
