archive/pillar
0
0
Fork 0
Code Issues 42 Pull Requests Projects Releases Wiki Activity
1,348 Commits 12 Branches 2 Tags
a5d11ec31bd45bc5268521df095ed43cf22a1a05
Commit Graph

18 Commits

Author SHA1 Message Date
Sybren A. Stüvel
2b09711eb0 Load user capabilities from Pillar config and allow extensions to extend. 
Default caps can be overridden using the USER_CAPABILITIES name in
config_local.py. These can be extended by Pillar Extensions.
 2017-08-22 11:31:17 +02:00
Sybren A. Stüvel
566f2a4835 Late-initialise CLI user & late-import UserClass class 
This may fix some unit tests issues.
 2017-08-22 09:41:38 +02:00
Sybren A. Stüvel
575a7ed1a7 Introduced role-based capability system. 
It's still rather limited and hard-coded, but it works.
 2017-08-18 14:47:42 +02:00
Sybren A. Stüvel
566a23d3b6 Unified user representation for web and API calls 
Both approaches now use a pillar.auth.UserClass instance. g.current_user
is now always set to that instance, even for web entry points.

This UserClass instance can still be keyed like the old dict, but this is
for temporary compatibility and shouldn't be relied on in new or touched
code.
 2017-08-18 13:19:34 +02:00
Sybren A. Stüvel
bd13d89817 Added permission check to DELETE of nodes. 2017-07-13 17:29:46 +02:00
Sybren A. Stüvel
9a10c86329 Added pillar.auth.current_web_user to easily get the current UserClass. 2017-05-12 13:55:55 +02:00
Sybren A. Stüvel
fdb9154b85 Allow login_user() to load the user from the database 
This makes it easier to properly log someone in from a unit test.
 2017-05-12 13:55:55 +02:00
Sybren A. Stüvel
2703617179 Added 'groups' property to UserClass 
This property was created by _load_user(), but never had a default
value set in UserClass.__init__().
 2017-05-12 13:55:55 +02:00
Sybren A. Stüvel
9f752e2584 Made AnonymousUser a subclass of UserClass 2017-05-12 13:55:55 +02:00
Sybren A. Stüvel
82437724cc Added some type annotation 
The web layer uses string IDs, whereas the API layer uses ObjectIDs.
Those annotations make it a bit more explicit what is used where.
 2017-05-12 13:55:55 +02:00
Sybren A. Stüvel
080d98f57c Removed unused imports 2017-05-12 13:55:55 +02:00
Sybren A. Stüvel
870800e8d2 Stop flashing 'Please log in to access this page.' 
This message was "flashed" (http://flask.pocoo.org/docs/0.12/patterns/flashing/)
by Flask-Login. This happens on every unauthorised request, so also on
AJAX requests (like for the notifications). As a result, a user could be
spammed by a screen full of these messages if they left their window open
and their session timed out.
 2017-05-05 10:40:08 +02:00
Sybren A. Stüvel
379d40837b Fixed issues logging in. 
The API call to /api/bcloud/update-subscription is now performed via the
SDK, to ensure proper authentication. Also streamlined some other code.
 2017-05-05 10:29:16 +02:00
Sybren A. Stüvel
1a54b723aa Reworked subscription/demo role management from web to API level. 
In the old situation, users had to be able to change their own roles. This
is inherently insecure.
 2017-05-04 17:49:18 +02:00
Sybren A. Stüvel
663627358f Ran 2to3 on pillar + some manual fixups 
The 'manual fixups' are:

- incorrect use of dict.items() where dict.iteritems() was meant; this
  results in list(dict.items()), which I changed to dict.items().
- removal of 'from __future__ import' lines, which 2to3 changes into
  empty lines; I removed the empty lines.
 2017-03-22 15:49:51 +01:00
Sybren A. Stüvel
76b0f5fc46 Moved login-code into a separate function. 
This makes it easier to log in users by their token from unittests.
 2016-09-08 12:03:51 +02:00
Sybren A. Stüvel
07691db874 Check subscription status on login. 2016-08-23 16:09:47 +02:00
Francesco Siddi
2c5dc34ea2 Introducing Pillar Framework 
Refactor of pillar-server and pillar-web into a single python package. This
simplifies the overall architecture of pillar applications.

Special thanks @sybren and @venomgfx
 2016-08-19 09:19:06 +02:00