def do(data, resource): body = {} params = data['params'] user = data.get('user', None) if user: user_id = user.get('id', None) else: user_id = None partition = params.get('partition', None) max_workers = params.get('max_workers', None) if database_can_not_access_to_item(partition): body['error'] = error.PERMISSION_DENIED return body # Check partition has been existed if not resource.db_has_partition(partition): body['error'] = error.NO_SUCH_PARTITION return body items = params.get('items', []) error_list = [None] * len(items) item_ids = [None] * len(items) index_keys = util.get_index_keys_to_index(resource, user, partition, 'w') sort_keys = util.get_sort_keys(resource) policy_code = get_policy_code(resource, partition, 'create') def try_put_item(idx, item): item['id'] = uuid() if 'owner' not in item: item['owner'] = user_id item = { key: value for key, value in item.items() if value != '' and value != {} and value != [] } if match_policy(policy_code, user, item): resource.db_put_item(partition, item, item_id=item['id'], index_keys=index_keys, sort_keys=sort_keys) item_ids[idx] = item.get('id', None) else: error_list[idx] = error.PERMISSION_DENIED if not max_workers: max_workers = len(items) max_workers = int(max_workers) + 1 max_workers = min(32, max_workers) with ThreadPoolExecutor(max_workers=max_workers) as exc: for _idx, _item in enumerate(items): exc.submit(try_put_item, _idx, _item) body['error_list'] = error_list body['item_ids'] = item_ids return body
def do(data, resource): body = {} params = data['params'] user = data['user'] item_id = params.get('item_id', None) item = resource.db_get_item(item_id) if item is None: body['error'] = error.NO_SUCH_ITEM return body # 시스템 파티션 제한 if database_can_not_access_to_item(item['partition']): body['error'] = error.PERMISSION_DENIED return body # 등록된 파티션이 아닌경우 if not resource.db_has_partition(item['partition']): body['item'] = None body['error'] = error.UNREGISTERED_PARTITION return body if match_policy_after_get_policy_code(resource, 'delete', item['partition'], user, item): success = resource.db_delete_item(item_id) body['success'] = success else: body['message'] = error.PERMISSION_DENIED return body
def update_work(idx, item_id): new_item = pairs[item_id] item = resource.db_get_item(item_id) # 아이템 없는 경우 if not item: error_list[idx] = error.NO_SUCH_ITEM return # 시스템 파티션 접근 제한 if database_can_not_access_to_item(item['partition']): error_list[idx] = error.PERMISSION_DENIED return # 등록된 파티션이 아닌경우 if item['partition'] not in partition_names: error_list[idx] = error.UNREGISTERED_PARTITION return if item['partition'] in policy_codes_by_partition: policy_code = policy_codes_by_partition[item['partition']] else: policy_code = get_policy_code(resource, item['partition'], 'update') policy_codes_by_partition[item['partition']] = policy_code # Remove field if value is None # for key, value in new_item.copy().items(): # if value is None: # new_item.pop(key) new_item = { key: value for key, value in new_item.items() if value != '' and value != {} and value != [] } if use_simplify: new_item = util.simplify_item(item, new_item) new_item['partition'] = item.get('partition', None) new_item['creation_date'] = item.get('creation_date', None) if match_policy(policy_code, user, item, new_item=new_item): index_keys = util.get_index_keys_to_index(resource, user, item['partition'], 'w') # 소트키는 무조건 업데이트시 포함해야함. for sort_key in sort_keys: s_key = sort_key.get('sort_key', None) if s_key and s_key not in new_item and item.get( s_key, None) is not None: new_item[s_key] = item.get(s_key, None) success = resource.db_update_item_v2(item_id, new_item, index_keys=index_keys, sort_keys=sort_keys) success_list[idx] = success else: error_list[idx] = error.UPDATE_POLICY_VIOLATION
def do(data, resource): body = {} params = data['params'] user = data['user'] item_id = params.get('item_id', None) field_name = params.get('field_name', None) field_value = params.get('field_value', None) item = resource.db_get_item(item_id) # 시스템 파티션 접근 제한 if database_can_not_access_to_item(item['partition']): body['error'] = error.PERMISSION_DENIED return body if not resource.db_has_partition(item['partition']): body['error'] = error.NO_SUCH_PARTITION return body new_item = { 'id': item_id, field_name: field_value, 'partition': item['partition'], 'creation_date': item.get('creation_date', 0) } if match_policy_after_get_policy_code(resource, 'update', item['partition'], user, item, new_item=new_item): index_keys = util.get_index_keys_to_index(resource, user, item['partition'], 'w') # 소트키는 무조건 업데이트시 포함해야함. sort_keys = util.get_sort_keys(resource) for sort_key in sort_keys: s_key = sort_key.get('sort_key', None) if s_key and s_key not in new_item and item.get(s_key, None) is not None: new_item[s_key] = item.get(s_key, None) success = resource.db_update_item_v2(item_id, new_item, index_keys=index_keys, sort_keys=sort_keys) body['success'] = success else: body['error'] = error.PERMISSION_DENIED return body
def delete_item(idx, item_id): item = resource.db_get_item(item_id) # 시스템 파티션 접근 제한 if database_can_not_access_to_item(item['partition']): success_list[idx] = False return # 등록된 파티션이 아닌경우 if not resource.db_has_partition(item['partition']): success_list[idx] = False return if item['partition'] in policy_codes_by_partition: policy_code = policy_codes_by_partition[item['partition']] else: policy_code = get_policy_code(resource, item['partition'], 'delete') policy_codes_by_partition[item['partition']] = policy_code if item and match_policy(policy_code, user, item): success = resource.db_delete_item(item_id) success_list[idx] = success
def do(data, resource): body = {} params = data['params'] user = data['user'] item_id = params.get('item_id', None) item = resource.db_get_item(item_id) if item is None: body['error'] = error.NO_SUCH_ITEM return Response(body) if database_can_not_access_to_item(item): body['error'] = error.PERMISSION_DENIED return Response(body) if match_policy_after_get_policy_code(resource, 'delete', item['partition'], user, item): success = resource.db_delete_item(item_id) body['success'] = success else: body['message'] = error.PERMISSION_DENIED return Response(body)
def do(data, resource): body = {} params = data['params'] user = data.get('user', None) if user: user_id = user.get('id', None) else: user_id = None partition = params.get('partition', None) item = params.get('item', {}) item['id'] = uuid() if 'owner' not in item: item['owner'] = user_id item = {key: value for key, value in item.items() if value != '' and value != {} and value != []} # 시스템 파티션 접근 제한 if database_can_not_access_to_item(partition): body['error'] = error.PERMISSION_DENIED return body # Check partition has been existed if resource.db_has_partition(partition): if match_policy_after_get_policy_code(resource, 'create', partition, user, item): index_keys = util.get_index_keys_to_index(resource, user, partition, 'w') sort_keys = util.get_sort_keys(resource) resource.db_put_item(partition, item, item_id=item['id'], index_keys=index_keys, sort_keys=sort_keys) body['item_id'] = item.get('id', None) return body else: body['error'] = error.PERMISSION_DENIED return body body['error'] = error.NO_SUCH_PARTITION return body
def do(data, resource): body = {} params = data['params'] user = data['user'] item_id = params.get('item_id', None) field_name = params.get('field_name', None) field_value = params.get('field_value', None) item = resource.db_get_item(item_id) if database_can_not_access_to_item(item): body['error'] = error.PERMISSION_DENIED return body if match_policy_after_get_policy_code(resource, 'update', item['partition'], user, item): item[field_name] = field_value if field_value is None: item.pop(field_name) success = resource.db_update_item(item_id, item) body['success'] = success else: body['error'] = error.PERMISSION_DENIED return body
def do(data, resource): body = {} params = data['params'] user = data['user'] item_id = params.get('item_id', None) new_item = params.get('item', {}) use_simplify = params.get('use_simplify', True) item = resource.db_get_item(item_id) # 아이템 없는 경우 if not item: body['item'] = None body['error'] = error.NO_SUCH_ITEM return body # 시스템 파티션 접근 제한 if database_can_not_access_to_item(item['partition']): body['error'] = error.PERMISSION_DENIED return body # 등록된 파티션이 아닌경우 if not resource.db_has_partition(item['partition']): body['item'] = None body['error'] = error.UNREGISTERED_PARTITION return body # Remove null # for key, value in new_item.copy().items(): # if value is None: # new_item.pop(key) # Put the value in the previous item that is not in the new field new_item = { key: value for key, value in new_item.items() if value != '' and value != {} and value != [] } if use_simplify: new_item = util.simplify_item(item, new_item) new_item['partition'] = item['partition'] new_item['creation_date'] = item['creation_date'] if match_policy_after_get_policy_code(resource, 'update', item['partition'], user, item, new_item=new_item): index_keys = util.get_index_keys_to_index(resource, user, item['partition'], 'w') # 소트키는 무조건 업데이트시 포함해야함. sort_keys = util.get_sort_keys(resource) for sort_key in sort_keys: s_key = sort_key.get('sort_key', None) if s_key and s_key not in new_item and item.get(s_key, None) is not None: new_item[s_key] = item.get(s_key, None) success = resource.db_update_item_v2(item_id, new_item, index_keys=index_keys, sort_keys=sort_keys) body['success'] = success else: body['error'] = error.UPDATE_POLICY_VIOLATION return body