def create_roles(roles):
for role in roles:
role_id = role['id']
authz_service.create_role(role_id, role['title'])
for permission_id in role['assigned_permissions']:
authz_service.assign_permission_to_role(permission_id, role_id)
def create_role_with_permissions(self, role_id, permission_ids):
role = authorization_service.create_role(role_id, role_id)
for permission_id in permission_ids:
permission = authorization_service.create_permission(permission_id, permission_id)
authorization_service.assign_permission_to_role(permission, role)
return role
def test_assign_permission_to_role(admin_app_with_db, permission, role):
role_permission_ids_before = get_permission_ids_for_role(role)
assert permission.id not in role_permission_ids_before
service.assign_permission_to_role(permission.id, role.id)
role_permission_ids_after = get_permission_ids_for_role(role)
assert permission.id in role_permission_ids_after
def create_role_with_permissions(role_id, permission_ids):
role = authorization_service.create_role(role_id, role_id)
for permission_id in permission_ids:
permission = authorization_service.create_permission(
permission_id, permission_id)
authorization_service.assign_permission_to_role(permission.id, role.id)
return role
def create_role_with_permissions(role_id, role_title, permissions_and_titles):
role = authorization_service.create_role(role_id, role_title)
for permission_enum_member, permission_title in permissions_and_titles:
permission_id = permission_enum_member.__key__
permission = authorization_service.create_permission(permission_id,
permission_title)
authorization_service.assign_permission_to_role(permission, role)
def create_role_with_permissions(role_id, role_title, permissions_and_titles):
role = authorization_service.create_role(role_id, role_title)
for permission_enum_member, permission_title in permissions_and_titles:
permission_id = permission_enum_member.__key__
permission = authorization_service.create_permission(permission_id,
permission_title)
authorization_service.assign_permission_to_role(permission, role)
def test_assign_permission_to_role(self):
permission_id = self.permission.id
role_id = self.role.id
role_permission_ids_before = self.get_permission_ids_for_role(role_id)
assert self.permission_id not in role_permission_ids_before
service.assign_permission_to_role(permission_id, role_id)
role_permission_ids_after = self.get_permission_ids_for_role(role_id)
assert self.permission_id in role_permission_ids_after
def assign_permissions_to_user(user, role_id, permission_ids):
"""Create the role and permissions, assign the permissions to the
role, and assign the role to the user.
"""
role = authorization_service.create_role(role_id, role_id)
for permission_id in permission_ids:
permission = authorization_service.create_permission(permission_id,
permission_id)
authorization_service.assign_permission_to_role(permission, role)
authorization_service.assign_role_to_user(role, user)
def assign_permissions_to_user(user_id, role_id, permission_ids):
"""Create the role and permissions, assign the permissions to the
role, and assign the role to the user.
"""
role = authorization_service.create_role(role_id, role_id)
for permission_id in permission_ids:
permission = authorization_service.create_permission(
permission_id, permission_id)
authorization_service.assign_permission_to_role(permission.id, role.id)
authorization_service.assign_role_to_user(user_id, role.id)
def role(permission):
role = service.create_role('board_moderator', 'Board Moderator')
service.assign_permission_to_role(permission.id, role.id)
return role
