def auth_clear_permissions_and_groups(transaction):
requester = {
"userid": 0,
"username": "******"
}
try:
users = crud.search_user(db.session, None)
# Delete all users
for user in users:
if user.username != 'admin':
crud.delete_user(db.session, user.username, requester)
except HTTPRequestError:
pass
try:
permissions = crud.search_perm(db.session)
for permission in permissions:
if permission.type != PermissionTypeEnum.system:
crud.delete_perm(db.session, permission.name, requester)
except HTTPRequestError as e:
pass
try:
groups = crud.search_group(db.session)
for group in groups:
if group.name != 'admin':
crud.delete_group(db.session, group.name, requester)
except HTTPRequestError as e:
pass
def list_permissions():
try:
perms = crud.search_perm(
db.session,
# search filters
request.args['path'] if 'path' in request.args else None,
request.args['method'] if 'method' in request.args else None,
request.args['permission'] if 'permission' in request.args else None,
request.args['type'] if 'type' in request.args else None
)
permissions_safe = list(map(lambda p: p.safe_dict(), perms))
return make_response(json.dumps({"permissions": permissions_safe}, default=json_serial), 200)
except HTTPRequestError as err:
return format_response(err.errorCode, err.message)
def auth_clear_everything_hook(transaction):
requester = {"userid": 0, "username": "******"}
try:
users = crud.search_user(db.session, None)
# Delete all users
for user in users:
crud.delete_user(db.session, user.username, requester)
except HTTPRequestError:
pass
try:
permissions = crud.search_perm(db.session)
for permission in permissions:
crud.delete_perm(db.session, permission.name, requester)
except HTTPRequestError as e:
pass
try:
groups = crud.search_group(db.session)
for group in groups:
crud.delete_group(db.session, group.name, requester)
except HTTPRequestError as e:
pass
