def bank_status(request):
bank = Bank(request.matchdict['id'], no_log=True)
if not can_read_bank(request, bank.bank):
return HTTPForbidden('Not authorized to access this resource')
if 'status' not in bank.bank:
return HTTPNotFound('no current status')
return bank.get_status()
