def add_policy(
    policy_data: PolicyModel,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Add policy to the system."""
    policy = UserCRUD.create_policy(db, policy_data)
    return PolicyModel.from_orm(policy)
def add_role(role_data: RoleModel,
             db: Session = Depends(get_db),
             _=Depends(
                 RequirePermission([RequiredPolicy(action='*',
                                                   resource='*')]))):
    """Add a role to the system."""
    role = UserCRUD.create_role(db, role_data)
    return RoleModel.from_orm(role)
def update_user(
    username: str,
    user_data: UserModelUpdate,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Update user data."""
    user = UserCRUD.update_user(username, user_data, db)
    return user
def add_user(user_data: UserModel,
             db: Session = Depends(get_db),
             _=Depends(
                 RequirePermission([RequiredPolicy(action='*',
                                                   resource='*')]))):
    """Add user to the system."""
    user = UserCRUD.create_user(db, user_data)
    return UserModel.from_orm(user)
def update_policy(
    name: str,
    policy_data: PolicyModelUpdate,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Update policy data."""
    policy = UserCRUD.update_policy(name, policy_data, db)
    return policy
def update_permission(
    permission_id: int,
    permission_data: PermissionModelUpdate,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Update permission data."""
    permission = UserCRUD.update_permission(permission_id, permission_data, db)
    return permission
def update_role(
    role_id: int,
    role_data: RoleModelUpdate,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Update role data."""
    role = UserCRUD.update_role(role_id, role_data, db)
    return role
def get_policy(
    name: Optional[str] = None,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Get a list of policies or a specific policy."""
    if name:
        policies = UserCRUD.get_policy(name=name, db=db)
    else:
        policies = UserCRUD.get_policies(db=db)
    return policies
def get_role(role_id: Optional[int] = None,
             db: Session = Depends(get_db),
             _=Depends(
                 RequirePermission([RequiredPolicy(action='*',
                                                   resource='*')]))):
    """Get a list of roles or a specific role."""
    if role_id:
        roles = UserCRUD.get_role(role_id=role_id, db=db)
    else:
        roles = UserCRUD.get_roles(db=db)
    return roles
Пример #10
0
def get_user(username: Optional[str] = None,
             db: Session = Depends(get_db),
             _: User = Depends(
                 RequirePermission([RequiredPolicy(action='*',
                                                   resource='*')]))):
    """Get a list of users or a specific user."""
    if username:
        users = UserCRUD.get_user(username=username, db=db)
    else:
        users = UserCRUD.get_users(db=db)
    return users
Пример #11
0
def get_permission(
    permission_id: Optional[int] = None,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Get a list of permissions or a specific permission."""
    if permission_id:
        permissions = UserCRUD.get_permission(permission_id=permission_id,
                                              db=db)
    else:
        permissions = UserCRUD.get_permissions(db=db)
    return permissions
Пример #12
0
def delete_user(
    user_id: int,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Delete user from the system."""
    statement = select(User).filter_by(id=user_id)
    user = db.execute(statement).scalar()
    if not user:
        raise HTTPException(status_code=status.HTTP_404_NOT_FOUND,
                            detail="not found")
    if UserCRUD.delete_user(user, db):
        return CommonResponse(message="user deleted successfully.")
Пример #13
0
def delete_policy(
    name: str,
    db: Session = Depends(get_db),
    _=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """Delete policy."""
    statement = select(Policy).filter_by(name=name)
    policy = db.execute(statement).scalar()
    if not policy:
        raise HTTPException(status_code=status.HTTP_404_NOT_FOUND,
                            detail="not found")
    if UserCRUD.delete_role(policy, db):
        return CommonResponse(message="role deleted successfully.")
Пример #14
0
def privileged(current_user=Depends(RequirePermission([RequiredPolicy(action='*', resource='*')]))):
    """
    Check if currently logged in user has admin permissions
    """
    message = f"admin access check passed for user {current_user.username}."
    return {'message': message}