forked from inveniosoftware/invenio-circulation
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Attempt to implement inveniosoftware#26
- Loading branch information
Showing
4 changed files
with
115 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,68 @@ | ||
| # This file is part of Invenio. | ||
| # Copyright (C) 2017 CERN. | ||
| # | ||
| # Invenio is free software; you can redistribute it | ||
| # and/or modify it under the terms of the GNU General Public License as | ||
| # published by the Free Software Foundation; either version 2 of the | ||
| # License, or (at your option) any later version. | ||
| # | ||
| # Invenio is distributed in the hope that it will be | ||
| # useful, but WITHOUT ANY WARRANTY; without even the implied warranty of | ||
| # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | ||
| # General Public License for more details. | ||
| # | ||
| # You should have received a copy of the GNU General Public License | ||
| # along with Invenio; if not, write to the | ||
| # Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, | ||
| # MA 02111-1307, USA. | ||
| # | ||
| # In applying this license, CERN does not | ||
| # waive the privileges and immunities granted to it by virtue of its status | ||
| # as an Intergovernmental Organization or submit itself to any jurisdiction. | ||
|
|
||
| """Access control for Circulation.""" | ||
|
|
||
|
|
||
| from __future__ import absolute_import, print_function | ||
|
|
||
| from flask_security import current_user | ||
|
|
||
|
|
||
| class CirculationPermission(object): | ||
| """Circulation permission.""" | ||
|
|
||
| create_actions = ['create'] | ||
| read_actions = ['read'] | ||
|
|
||
| def __init__(self, record, func, user): | ||
| """Initialize a permission object.""" | ||
| self.record = record | ||
| self.func = func | ||
| self.user = user or current_user | ||
|
|
||
| def can(self): | ||
| """Determine access.""" | ||
| return self.func(self.user, self.record) | ||
|
|
||
| @classmethod | ||
| def create(cls, record, action, user=None): | ||
| """Create a circulation permission.""" | ||
| if action in cls.create_actions: | ||
| return cls(record, allow, user) | ||
| else: | ||
| return cls(record, deny, user) | ||
|
|
||
|
|
||
| def deny(user, record): | ||
| """Deny access.""" | ||
| return False | ||
|
|
||
|
|
||
| def allow(user, record): | ||
| """Allow access.""" | ||
| return True | ||
|
|
||
|
|
||
| def circulation_permission_factory(record=None, action=None): | ||
| """Circulation permission factory.""" | ||
| return CirculationPermission.create(record, action) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,43 @@ | ||
| # -*- coding: utf-8 -*- | ||
| # | ||
| # This file is part of CDS. | ||
| # Copyright (C) 2015, 2016, 2018 CERN. | ||
| # | ||
| # CDS is free software; you can redistribute it | ||
| # and/or modify it under the terms of the GNU General Public License as | ||
| # published by the Free Software Foundation; either version 2 of the | ||
| # License, or (at your option) any later version. | ||
| # | ||
| # CDS is distributed in the hope that it will be | ||
| # useful, but WITHOUT ANY WARRANTY; without even the implied warranty of | ||
| # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | ||
| # General Public License for more details. | ||
| # | ||
| # You should have received a copy of the GNU General Public License | ||
| # along with CDS; if not, write to the | ||
| # Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, | ||
| # MA 02111-1307, USA. | ||
| # | ||
| # In applying this license, CERN does not | ||
| # waive the privileges and immunities granted to it by virtue of its status | ||
| # as an Intergovernmental Organization or submit itself to any jurisdiction. | ||
|
|
||
| """Test access control package.""" | ||
|
|
||
| import uuid | ||
|
|
||
| import pytest | ||
| from invenio_records.api import Record | ||
|
|
||
| from invenio_circulation.permissions import circulation_permission_factory | ||
|
|
||
|
|
||
| @pytest.mark.parametrize('access,action,is_allowed', [ | ||
| ({'foo': 'bar'}, 'create', True), | ||
| ({'foo': 'bar'}, 'read', True), | ||
| ]) | ||
| def test_access(db, access, action, is_allowed): | ||
| """Test access control.""" | ||
| record = Record.create(access, id_=uuid.uuid4()) | ||
| factory = circulation_permission_factory(record, action) | ||
| assert factory.can() |