pk/atst
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update atat-wide permission sets

Browse Source
This commit is contained in:
dandds 2019-03-20 16:52:32 -04:00
parent 0f9662e2f2
commit c4b4cc0912
4 changed files with 9 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
atst/domain/permission_sets.py
View File

@ -16,6 +16,7 @@ class PermissionSets(object):
EDIT_PORTFOLIO_REPORTS = "edit_portfolio_reports" EDIT_PORTFOLIO_REPORTS = "edit_portfolio_reports"
EDIT_PORTFOLIO_ADMIN = "edit_portfolio_admin" EDIT_PORTFOLIO_ADMIN = "edit_portfolio_admin"
PORTFOLIO_POC = "portfolio_poc" PORTFOLIO_POC = "portfolio_poc"
VIEW_AUDIT_LOG = "view_audit_log"
@classmethod @classmethod
def get(cls, perms_set_name): def get(cls, perms_set_name):
@ -44,19 +45,13 @@ class PermissionSets(object):
return permission_sets return permission_sets
ATAT_ROLES = [ ATAT_PERMISSION_SETS = [
{ {
"name": "ccpo", "name": PermissionSets.VIEW_AUDIT_LOG,
"display_name": "CCPO", "display_name": "View Audit Log",
"description": "", "description": "",
"permissions": [Permissions.VIEW_AUDIT_LOG], "permissions": [Permissions.VIEW_AUDIT_LOG],
}, }
{
"name": "default",
"display_name": "Default",
"description": "",
"permissions": [],
},
] ]
_PORTFOLIO_BASIC_PERMISSION_SETS = [ _PORTFOLIO_BASIC_PERMISSION_SETS = [

2
atst/routes/dev.py
View File

@ -19,7 +19,6 @@ from atst.utils import pick
bp = Blueprint("dev", __name__) bp = Blueprint("dev", __name__)
_ALL_PERMS = [ _ALL_PERMS = [
"ccpo",
PermissionSets.VIEW_PORTFOLIO, PermissionSets.VIEW_PORTFOLIO,
PermissionSets.VIEW_PORTFOLIO_APPLICATION_MANAGEMENT, PermissionSets.VIEW_PORTFOLIO_APPLICATION_MANAGEMENT,
PermissionSets.VIEW_PORTFOLIO_FUNDING, PermissionSets.VIEW_PORTFOLIO_FUNDING,
@ -30,6 +29,7 @@ _ALL_PERMS = [
PermissionSets.EDIT_PORTFOLIO_REPORTS, PermissionSets.EDIT_PORTFOLIO_REPORTS,
PermissionSets.EDIT_PORTFOLIO_ADMIN, PermissionSets.EDIT_PORTFOLIO_ADMIN,
PermissionSets.PORTFOLIO_POC, PermissionSets.PORTFOLIO_POC,
PermissionSets.VIEW_AUDIT_LOG,
] ]
_DEV_USERS = { _DEV_USERS = {

4
script/seed_roles.py
View File

@ -10,11 +10,11 @@ from sqlalchemy.orm.exc import NoResultFound
from atst.app import make_config, make_app from atst.app import make_config, make_app
from atst.database import db from atst.database import db
from atst.models import PermissionSet, Permissions from atst.models import PermissionSet, Permissions
from atst.domain.permission_sets import ATAT_ROLES, PORTFOLIO_PERMISSION_SETS from atst.domain.permission_sets import ATAT_PERMISSION_SETS, PORTFOLIO_PERMISSION_SETS
def seed_roles(): def seed_roles():
for permission_set_info in ATAT_ROLES + PORTFOLIO_PERMISSION_SETS: for permission_set_info in ATAT_PERMISSION_SETS + PORTFOLIO_PERMISSION_SETS:
permission_set = PermissionSet(**permission_set_info) permission_set = PermissionSet(**permission_set_info)
try: try:
existing_permission_set = ( existing_permission_set = (

2
tests/test_auth.py
View File

@ -49,7 +49,7 @@ def test_successful_login_redirect_ccpo(client, monkeypatch):
monkeypatch.setattr( monkeypatch.setattr(
"atst.domain.authnid.AuthenticationContext.authenticate", lambda *args: True "atst.domain.authnid.AuthenticationContext.authenticate", lambda *args: True
) )
role = PermissionSets.get("ccpo") role = PermissionSets.get(PermissionSets.VIEW_AUDIT_LOG)
monkeypatch.setattr( monkeypatch.setattr(
"atst.domain.authnid.AuthenticationContext.get_user", "atst.domain.authnid.AuthenticationContext.get_user",
lambda *args: UserFactory.create(), lambda *args: UserFactory.create(),