dandds
GitHub
commit
d84a38eb13
@ -15,17 +15,26 @@ class BaseHandler(tornado.web.RequestHandler):
|
|||||||
|
|
||||||
@tornado.gen.coroutine
|
@tornado.gen.coroutine
|
||||||
def login(self, user):
|
def login(self, user):
|
||||||
user["atat_permissions"] = yield self._get_user_permissions(user["id"])
|
user_permissions = yield self._get_user_permissions(user["id"])
|
||||||
|
user["atat_permissions"] = user_permissions["atat_permissions"]
|
||||||
|
user["atat_role"] = user_permissions["atat_role"]
|
||||||
session_id = self.sessions.start_session(user)
|
session_id = self.sessions.start_session(user)
|
||||||
self.set_secure_cookie("atat", session_id)
|
self.set_secure_cookie("atat", session_id)
|
||||||
return self.redirect("/home")
|
return self.redirect("/home")
|
||||||
|
|
||||||
@tornado.gen.coroutine
|
@tornado.gen.coroutine
|
||||||
def _get_user_permissions(self, user_id):
|
def _get_user_permissions(self, user_id):
|
||||||
response = yield self.authz_client.post(
|
response = yield self.authz_client.get(
|
||||||
"/users", json={"id": user_id, "atat_role": "ccpo"}
|
"/users/{}".format(user_id), raise_error=False
|
||||||
)
|
)
|
||||||
return response.json["atat_permissions"]
|
if response.code == 404:
|
||||||
|
response = yield self.authz_client.post(
|
||||||
|
"/users", json={"id": user_id, "atat_role": "developer"}
|
||||||
|
)
|
||||||
|
return response.json
|
||||||
|
|
||||||
|
else:
|
||||||
|
return response.json
|
||||||
|
|
||||||
def get_current_user(self):
|
def get_current_user(self):
|
||||||
cookie = self.get_secure_cookie("atat")
|
cookie = self.get_secure_cookie("atat")
|
||||||
|
|||||||
@ -2,8 +2,41 @@ import tornado.gen
|
|||||||
|
|
||||||
from atst.handler import BaseHandler
|
from atst.handler import BaseHandler
|
||||||
|
|
||||||
|
_DEV_USERS = {
|
||||||
|
"ccpo": {
|
||||||
|
"id": "164497f6-c1ea-4f42-a5ef-101da278c012",
|
||||||
|
"first_name": "Sam",
|
||||||
|
"last_name": "CCPO",
|
||||||
|
},
|
||||||
|
"owner": {
|
||||||
|
"id": "cce17030-4109-4719-b958-ed109dbb87c8",
|
||||||
|
"first_name": "Olivia",
|
||||||
|
"last_name": "Owner",
|
||||||
|
},
|
||||||
|
"admin": {
|
||||||
|
"id": "66ebf7b8-cbf0-4ed8-a102-5f105330df75",
|
||||||
|
"first_name": "Andreas",
|
||||||
|
"last_name": "Admin",
|
||||||
|
},
|
||||||
|
"developer": {
|
||||||
|
"id": "7707b9f2-5945-49ae-967a-be65baa88baf",
|
||||||
|
"first_name": "Dominick",
|
||||||
|
"last_name": "Developer",
|
||||||
|
},
|
||||||
|
"billing_auditor": {
|
||||||
|
"id": "6978ac0c-442a-46aa-a0c3-ff17b5ec2a8c",
|
||||||
|
"first_name": "Billie",
|
||||||
|
"last_name": "The Billing Auditor",
|
||||||
|
},
|
||||||
|
"security_auditor": {
|
||||||
|
"id": "596fd001-bb1d-4adf-87d8-fa2312e882de",
|
||||||
|
"first_name": "Sawyer",
|
||||||
|
"last_name": "The Security Auditor",
|
||||||
|
},
|
||||||
|
}
|
||||||
|
|
||||||
class Dev(BaseHandler):
|
class Dev(BaseHandler):
|
||||||
|
|
||||||
def initialize(self, action, sessions, authz_client):
|
def initialize(self, action, sessions, authz_client):
|
||||||
self.action = action
|
self.action = action
|
||||||
self.sessions = sessions
|
self.sessions = sessions
|
||||||
@ -11,9 +44,14 @@ class Dev(BaseHandler):
|
|||||||
|
|
||||||
@tornado.gen.coroutine
|
@tornado.gen.coroutine
|
||||||
def get(self):
|
def get(self):
|
||||||
user = {
|
role = self.get_argument("role", "ccpo")
|
||||||
"id": "164497f6-c1ea-4f42-a5ef-101da278c012",
|
user = _DEV_USERS[role]
|
||||||
"first_name": "Test",
|
yield self._set_user_permissions(user["id"], role)
|
||||||
"last_name": "User",
|
|
||||||
}
|
|
||||||
yield self.login(user)
|
yield self.login(user)
|
||||||
|
|
||||||
|
@tornado.gen.coroutine
|
||||||
|
def _set_user_permissions(self, user_id, role):
|
||||||
|
response = yield self.authz_client.post(
|
||||||
|
"/users", json={"id": user_id, "atat_role": role}
|
||||||
|
)
|
||||||
|
return response.json
|
||||||
|
|||||||
@ -5,7 +5,7 @@
|
|||||||
</a>
|
</a>
|
||||||
|
|
||||||
<a href="/" class="topbar__link topbar__link--secondary">
|
<a href="/" class="topbar__link topbar__link--secondary">
|
||||||
<span>Tech Lead</span>
|
<span>{{ current_user.get("atat_role") }}</span>
|
||||||
</a>
|
</a>
|
||||||
</nav>
|
</nav>
|
||||||
</header>
|
</header>
|
||||||
|
|||||||
@ -5,6 +5,7 @@ from atst.api_client import ApiClient
|
|||||||
|
|
||||||
|
|
||||||
class MockApiClient(ApiClient):
|
class MockApiClient(ApiClient):
|
||||||
|
|
||||||
def __init__(self, service):
|
def __init__(self, service):
|
||||||
self.service = service
|
self.service = service
|
||||||
|
|
||||||
@ -43,6 +44,7 @@ class MockApiClient(ApiClient):
|
|||||||
|
|
||||||
|
|
||||||
class MockRequestsClient(MockApiClient):
|
class MockRequestsClient(MockApiClient):
|
||||||
|
|
||||||
@tornado.gen.coroutine
|
@tornado.gen.coroutine
|
||||||
def get(self, path, **kwargs):
|
def get(self, path, **kwargs):
|
||||||
json = {
|
json = {
|
||||||
@ -64,9 +66,7 @@ class MockRequestsClient(MockApiClient):
|
|||||||
|
|
||||||
|
|
||||||
class MockAuthzClient(MockApiClient):
|
class MockAuthzClient(MockApiClient):
|
||||||
@tornado.gen.coroutine
|
_json = {
|
||||||
def post(self, path, **kwargs):
|
|
||||||
json = {
|
|
||||||
"atat_permissions": [
|
"atat_permissions": [
|
||||||
"view_original_jedi_request",
|
"view_original_jedi_request",
|
||||||
"review_and_approve_jedi_workspace_request",
|
"review_and_approve_jedi_workspace_request",
|
||||||
@ -104,4 +104,11 @@ class MockAuthzClient(MockApiClient):
|
|||||||
"username": None,
|
"username": None,
|
||||||
"workspace_roles": [],
|
"workspace_roles": [],
|
||||||
}
|
}
|
||||||
return self._get_response("POST", path, 200, json=json)
|
|
||||||
|
@tornado.gen.coroutine
|
||||||
|
def post(self, path, **kwargs):
|
||||||
|
return self._get_response("POST", path, 200, json=self._json)
|
||||||
|
|
||||||
|
@tornado.gen.coroutine
|
||||||
|
def get(self, path, **kwargs):
|
||||||
|
return self._get_response("POST", path, 200, json=self._json)
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user