def run_permission_add(argv):
if len(argv) < 4:
raise utils.CmdLineInputError()
role_id = argv.pop(0)
permission_info_list = argv_to_permission_info_list(argv)
cib = get_cib(get_cib_xml())
provide_role(cib, role_id)
add_permissions_to_role(cib, role_id, permission_info_list)
replace_cib_configuration(cib)
def test_add_role_for_nonexisting_id(self):
role_id = 'new-id'
lib.provide_role(self.acls, role_id)
self.assert_cib_equal(self.create_cib().append_to_first_tag_name(
'configuration', '''
<acls>
<acl_role id="{0}"/>
</acls>
'''.format(role_id)))
def test_add_role_for_nonexisting_id(self):
role_id = 'new-id'
lib.provide_role(self.cib.tree, role_id)
self.assert_cib_equal(
self.create_cib().append_to_first_tag_name('configuration', '''
<acls>
<acl_role id="{0}"/>
</acls>
'''.format(role_id))
)
def test_add_role_for_nonexisting_id(self):
role_id = "new-id"
lib.provide_role(self.acls, role_id)
self.assert_cib_equal(self.create_cib().append_to_first_tag_name(
"configuration",
"""
<acls>
<acl_role id="{0}"/>
</acls>
""".format(role_id),
))
def add_permission(lib_env, role_id, permission_info_list):
"""
Add permissions do role with id role_id. If role doesn't exist it will be
created.
Raises LibraryError on any failure.
lib_env -- LibraryEnvirnoment
role_id -- id of role
permission_info_list -- list of permissons, items of list should be tuples:
(<read|write|deny>, <xpath|id>, <any string>)
"""
with cib_acl_section(lib_env) as acl_section:
acl.validate_permissions(acl_section, permission_info_list)
acl.add_permissions_to_role(acl.provide_role(acl_section, role_id),
permission_info_list)
def add_permission(lib_env, role_id, permission_info_list):
"""
Add permissions do role with id role_id. If role doesn't exist it will be
created.
Raises LibraryError on any failure.
lib_env -- LibraryEnvirnoment
role_id -- id of role
permission_info_list -- list of permissons, items of list should be tuples:
(<read|write|deny>, <xpath|id>, <any string>)
"""
cib = lib_env.get_cib(REQUIRED_CIB_VERSION)
acl.validate_permissions(cib, permission_info_list)
acl.add_permissions_to_role(acl.provide_role(cib, role_id),
permission_info_list)
lib_env.push_cib(cib)
def add_permission(lib_env, role_id, permission_info_list):
"""
Add permissions do role with id role_id. If role doesn't exist it will be
created.
Raises LibraryError on any failure.
lib_env -- LibraryEnvirnoment
role_id -- id of role
permission_info_list -- list of permissons, items of list should be tuples:
(<read|write|deny>, <xpath|id>, <any string>)
"""
cib = lib_env.get_cib(REQUIRED_CIB_VERSION)
acl.validate_permissions(cib, permission_info_list)
acl.add_permissions_to_role(
acl.provide_role(cib, role_id), permission_info_list
)
lib_env.push_cib(cib)
def add_permission(lib_env, role_id, permission_info_list):
"""
Add permissions do role with id role_id. If role doesn't exist it will be
created.
Raises LibraryError on any failure.
lib_env -- LibraryEnvirnoment
role_id -- id of role
permission_info_list -- list of permissons, items of list should be tuples:
(<read|write|deny>, <xpath|id>, <any string>)
"""
with cib_acl_section(lib_env) as acl_section:
acl.validate_permissions(acl_section, permission_info_list)
acl.add_permissions_to_role(
acl.provide_role(acl_section, role_id),
permission_info_list
)
