aiohttp-security/aiohttp_security/abc.py

51 lines
1.5 KiB
Python
Raw Normal View History

2015-07-08 17:30:24 +00:00
import abc
# see http://plope.com/pyramid_auth_design_api_postmortem
class AbstractIdentityPolicy(metaclass=abc.ABCMeta):
@abc.abstractmethod
2017-12-13 14:51:46 +00:00
async def identify(self, request):
"""Return the claimed identity of the user associated request or
2015-07-08 17:30:24 +00:00
``None`` if no identity can be found associated with the request."""
pass
@abc.abstractmethod
2017-12-13 14:51:46 +00:00
async def remember(self, request, response, identity, **kwargs):
2015-07-08 17:30:24 +00:00
"""Remember identity.
Modify response object by filling it's headers with remembered user.
2015-07-08 17:30:24 +00:00
An individual identity policy and its consumers can decide on
2015-11-05 20:59:21 +00:00
the composition and meaning of **kwargs.
2015-07-08 17:30:24 +00:00
"""
pass
@abc.abstractmethod
2017-12-13 14:51:46 +00:00
async def forget(self, request, response):
""" Modify response which can be used to 'forget' the
2015-07-08 17:30:24 +00:00
current identity on subsequent requests."""
pass
class AbstractAuthorizationPolicy(metaclass=abc.ABCMeta):
@abc.abstractmethod
2017-12-13 14:51:46 +00:00
async def permits(self, identity, permission, context=None):
2015-11-06 14:45:20 +00:00
"""Check user permissions.
Return True if the identity is allowed the permission in the
current context, else return False.
"""
2015-07-08 17:30:24 +00:00
pass
@abc.abstractmethod
2017-12-13 14:51:46 +00:00
async def authorized_userid(self, identity):
2015-11-06 14:45:20 +00:00
"""Retrieve authorized user id.
Return the user_id of the user identified by the identity
or 'None' if no user exists related to the identity.
"""
2015-07-08 17:30:24 +00:00
pass