def review_page(request, action_class, **kwargs):
access = Access(request)
allowable = access.allowable(action_class)
if allowable is False:
simple = action_class.readable()
raise HTTPForbidden("You don't have sufficient permissions to review %s requests" % simple)
serial_field = 'SERIAL'
answer = ''
POST = request.POST
if serial_field in POST and (EXIT[0] in POST or EXIT[1] in POST):
serial = POST[serial_field]
action = DBSession.query(action_class).filter(Action.serial == serial).first()
if action is None:
raise HTTPNotFound('Invalid serial number')
if action not in allowable:
raise HTTPForbidden('Action not available for processing')
if EXIT[0] in POST and EXIT[1] in POST:
raise ValueError('Both "%s" and "%s" specified in form' % EXIT)
choice = EXIT[1] if EXIT[1] in POST else EXIT[0]
caps = [c for c in allowable[action] if c.access_type == choice]
try:
answer = access.perform_with_one(action, caps)
except HTTPException as e:
answer = e.detail
else:
del allowable[action]
forms = []
form_params = dict(serial_field=serial_field)
button_options = {EXIT[0]:'Allow', EXIT[1]:'Deny'}
for action, caps in allowable.iteritems():
render_template, render_params = action.render('pending')
form_params['info'] = HTML(render(render_template, render_params, request))
form_params['serial'] = action.serial
form_params['credentials'] = offer_creds(request, caps)
choices = set((c.access_type for c in caps))
form_params['buttons'] = ((c, button_options[c]) for c in choices)
forms.append(HTML(render(FORM_TEMPLATE, form_params, request)))
if not forms:
forms.append('No requests are available for processing')
return dict(forms=forms, answer=HTML(answer), **kwargs)
def certify(request): csr_field = 'csr' submitted = 'csr.submitted' csr_text, message = '', '' if csr_field in request.POST: try: csr_text = request.POST[csr_field] csr = Certify(csr_text) except ValueError as e: if submitted not in request.POST: raise HTTPBadRequest(e.args[0]) message = e.args[0] if not message: return Response(Access(request).perform(csr)) return dict( csr_field=csr_field, csr=csr_text, submitted=submitted, message=message, credentials=offer_creds(request), )
def revoke_page(request, action_class, **kwargs):
access = Access(request)
revocable = access.revocable(action_class)
if revocable is False:
simple = action_class.readable()
raise HTTPForbidden("You don't have sufficient permissions to revoke %s requests" % simple)
serial_field = 'SERIAL'
answer = ''
POST = request.POST
if serial_field in POST:
serial = POST[serial_field]
action = DBSession.query(action_class).filter(Action.serial == serial).first()
if action is None:
raise HTTPNotFound('Invalid serial number')
if action not in revocable:
raise HTTPForbidden('Action not available for revocation')
try:
answer = access.perform_with_one(action, revocable[action])
except HTTPException as e:
answer = e.detail
else:
del revocable[action]
forms = []
form_params = dict(serial_field=serial_field, button='Revoke')
button_options = {EXIT[0]:'Allow', EXIT[1]:'Deny'}
for action, caps in revocable.iteritems():
render_template, render_params = action.render('approved')
form_params['info'] = HTML(render(render_template, render_params, request))
form_params['serial'] = action.serial
form_params['credentials'] = offer_creds(request, caps)
forms.append(HTML(render(FORM_TEMPLATE, form_params, request)))
if not forms:
forms.append('No requests are available for revocation')
return dict(forms=forms, answer=HTML(answer), **kwargs)
