def assert_user_has_resource_db_permission(user_db, resource_db, permission_type):
"""
Check that currently logged-in user has specified permission on the provied resource.
If user doesn't have a required permission, AccessDeniedError is thrown.
"""
has_permission = user_has_resource_db_permission(user_db=user_db,
resource_db=resource_db,
permission_type=permission_type)
if not has_permission:
raise ResourceAccessDeniedError(user_db=user_db, resource_db=resource_db,
permission_type=permission_type)
def assert_user_has_resource_api_permission(user_db, resource_api, permission_type):
"""
Check that currently logged-in user has specified permission for the resource which is to be
created.
"""
has_permission = user_has_resource_api_permission(user_db=user_db,
resource_api=resource_api,
permission_type=permission_type)
if not has_permission:
# TODO: Refactor exception
raise ResourceAccessDeniedError(user_db=user_db, resource_db=resource_api,
permission_type=permission_type)