Python raise_forbidden Examples

Programming Language: Python

Namespace/Package Name: sirepo.util

Method/Function: raise_forbidden

Examples at hotexamples.com: 5

Python raise_forbidden - 5 examples found. These are the top rated real world Python examples of sirepo.util.raise_forbidden extracted from open source projects. You can rate examples to help us improve the quality of examples.

Example #1

Show file

File: __init__.py Project: QJohn2017/sirepo

def check_user_has_role(role, raise_forbidden=True):
    u = logged_in_user()
    if auth_db.UserRole.has_role(u, role):
        return True
    if raise_forbidden:
        util.raise_forbidden('uid={} role={} not found'.format(u, role))
    return False

Example #2

Show file

File: github.py Project: yeeon/sirepo

def api_authGithubAuthorized():
    """Handle a callback from a successful OAUTH request.

    Tracks oauth users in a database.
    """
    # clear temporary cookie values first
    expect = cookie.unchecked_remove(_COOKIE_NONCE) or '<missing-nonce>'
    t = cookie.unchecked_remove(_COOKIE_SIM_TYPE)
    oc = _oauth_client()
    resp = oc.authorized_response()
    if not resp:
        util.raise_forbidden('missing oauth response')
    got = flask.request.args.get('state', '<missing-state>')
    if expect != got:
        pkdlog(
            'mismatch oauth state: expected {} != got {}',
            expect,
            got,
        )
        return auth.login_fail_redirect(t, this_module, 'oauth-state')
    d = oc.get('user', token=(resp['access_token'], '')).data
    with auth_db.thread_lock:
        u = AuthGithubUser.search_by(oauth_id=d['id'])
        if u:
            # always update user_name
            u.user_name = d['login']
        else:
            u = AuthGithubUser(oauth_id=d['id'], user_name=d['login'])
        u.save()
        return auth.login(
            this_module,
            model=u,
            sim_type=t,
            data=d,
        )

Example #3

Show file

File: __init__.py Project: ahebnl/Sirepo

def check_user_has_role(role, raise_forbidden=True):
    u = _get_user()
    with auth_db.thread_lock:
        if sirepo.auth_db.UserRole.search_by(role=role, uid=u):
            return True
    if raise_forbidden:
        util.raise_forbidden('uid={} role={} not found'.format(u, role))
    return False

Example #4

Show file

File: oauth.py Project: e-carlin/sirepo

def authorized_callback(oauth_type):
    """Handle a callback from a successful OAUTH request. Tracks oauth
    users in a database.
    """
    oc = _oauth_client(oauth_type)
    resp = oc.authorized_response()
    if not resp:
        util.raise_forbidden('missing oauth response')
    state = _remove_cookie_key(_COOKIE_NONCE)
    if state != flask.request.args.get('state', ''):
        util.raise_forbidden(
            'mismatch oauth state: {} != {}',
            state,
            flask.request.args.get('state'),
        )
    # fields: id, login, name
    user_data = oc.get('user', token=(resp['access_token'], '')).data
    user = _update_database(user_data, oauth_type)
    _update_session(_LOGGED_IN, user.user_name)
    return server.javascript_redirect(_remove_cookie_key(_COOKIE_NEXT))

Example #5

Show file

def authorized_callback(oauth_type):
    """Handle a callback from a successful OAUTH request. Tracks oauth
    users in a database.
    """
    oc = _oauth_client(oauth_type)
    resp = oc.authorized_response()
    if not resp:
        util.raise_forbidden('missing oauth response')
    state = _remove_cookie_key(_COOKIE_NONCE)
    if state != flask.request.args.get('state', ''):
        util.raise_forbidden(
            'mismatch oauth state: {} != {}',
            state,
            flask.request.args.get('state'),
        )
    # fields: id, login, name
    user_data = oc.get('user', token=(resp['access_token'], '')).data
    user = _update_database(user_data, oauth_type)
    _update_session(_LOGGED_IN, user.user_name)
    return server.javascript_redirect(_remove_cookie_key(_COOKIE_NEXT))