Update to 0.3.0

2018-09-06 13:06:55 +03:00
parent 097f7ecc43
commit 9b1d08c661
23 changed files with 418 additions and 177 deletions
--- a/demo/database_auth/handlers.py
+++ b/demo/database_auth/handlers.py
@@ -4,7 +4,7 @@ from aiohttp import web

 from aiohttp_security import (
    remember, forget, authorized_userid,
-    has_permission, login_required,
+    check_permission, check_authorized,
 )

 from .db_auth import check_credentials
@@ -45,25 +45,25 @@ class Web(object):
        db_engine = request.app.db_engine
        if await check_credentials(db_engine, login, password):
            await remember(request, response, login)
-            return response
+            raise response

-        return web.HTTPUnauthorized(
+        raise web.HTTPUnauthorized(
            body=b'Invalid username/password combination')

-    @login_required
    async def logout(self, request):
+        await check_authorized(request)
        response = web.Response(body=b'You have been logged out')
        await forget(request, response)
        return response

-    @has_permission('public')
    async def internal_page(self, request):
+        await check_permission(request, 'public')
        response = web.Response(
            body=b'This page is visible for all registered users')
        return response

-    @has_permission('protected')
    async def protected_page(self, request):
+        await check_permission(request, 'protected')
        response = web.Response(body=b'You are on protected page')
        return response

--- a/demo/database_auth/main.py
+++ b/demo/database_auth/main.py
@@ -19,7 +19,7 @@ async def init(loop):
                                    password='aiohttp_security',
                                    database='aiohttp_security',
                                    host='127.0.0.1')
-    app = web.Application(loop=loop)
+    app = web.Application()
    app.db_engine = db_engine
    setup_session(app, RedisStorage(redis_pool))
    setup_security(app,