def execute(self): from pyclaim.domain.aggregates.token.model.token import Token from pyclaim.domain.aggregates.user.model.user import User from pyclaim.domain.aggregates.resource.model.resource import Resource token = Token.get_by_id(self.token_id) if not token: return "Not Authenticated" user = User.get_by_id(token.user_id) if not user: return "Not Authenticated" if user.is_sys_admin(): return "Authorized" resource = Resource.get_by_name(self.resource_name) if not resource: return "Not Authorized" for user_claim in user.claims: for resource_claim in resource.claims: if ( resource_claim["claim_type"]["_id"] == user_claim["claim_type"]["_id"] and resource_claim["value"] == user_claim["value"] ): return "Authorized" return "Not Authorized"
def execute(self): from pyclaim.domain.aggregates.token.model.token import Token token = Token.get_by_id(self.token_id) token_detail = None if token: token_detail = TokenDetail.create_from_token(token) return token_detail