python
/
aiohttp-security
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Work on docs

This commit is contained in:
Andrew Svetlov 2015-11-06 22:45:20 +08:00
parent f8d76e32ce
commit d02faf69e7
4 changed files with 81 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
aiohttp_security/abc.py
View File

@ -38,13 +38,19 @@ class AbstractAuthorizationPolicy(metaclass=abc.ABCMeta):
@asyncio.coroutine @asyncio.coroutine
@abc.abstractmethod @abc.abstractmethod
def permits(self, identity, permission, context=None): def permits(self, identity, permission, context=None):
""" Return True if the identity is allowed the permission in the """Check user permissions.
current context, else return False"""
Return True if the identity is allowed the permission in the
current context, else return False.
"""
pass pass
@asyncio.coroutine @asyncio.coroutine
@abc.abstractmethod @abc.abstractmethod
def authorized_userid(self, identity): def authorized_userid(self, identity):
""" Return the user_id of the user identified by the identity """Retrieve authorized user id.
or 'None' if no user exists related to the identity """
Return the user_id of the user identified by the identity
or 'None' if no user exists related to the identity.
"""
pass pass

27
docs/aiohttp_doctools.py Normal file
View File

@ -0,0 +1,27 @@
from sphinx.domains.python import PyModulelevel, PyClassmember
from sphinx import addnodes
class PyCoroutineMixin(object):
def handle_signature(self, sig, signode):
ret = super(PyCoroutineMixin, self).handle_signature(sig, signode)
signode.insert(0, addnodes.desc_annotation('coroutine ', 'coroutine '))
return ret
class PyCoroutineFunction(PyCoroutineMixin, PyModulelevel):
def run(self):
self.name = 'py:function'
return PyModulelevel.run(self)
class PyCoroutineMethod(PyCoroutineMixin, PyClassmember):
def run(self):
self.name = 'py:method'
return PyClassmember.run(self)
def setup(app):
app.add_directive_to_domain('py', 'coroutinefunction', PyCoroutineFunction)
app.add_directive_to_domain('py', 'coroutinemethod', PyCoroutineMethod)
return {'version': '1.0', 'parallel_read_safe': True}

2
docs/conf.py
View File

@ -39,6 +39,7 @@ with codecs.open(_version_path, 'r', 'latin1') as fp:
# add these directories to sys.path here. If the directory is relative to the # add these directories to sys.path here. If the directory is relative to the
# documentation root, use os.path.abspath to make it absolute, like shown here. # documentation root, use os.path.abspath to make it absolute, like shown here.
sys.path.insert(0, os.path.abspath('..')) sys.path.insert(0, os.path.abspath('..'))
sys.path.insert(0, os.path.abspath('.'))
import alabaster import alabaster
@ -54,6 +55,7 @@ extensions = [
'sphinx.ext.intersphinx', 'sphinx.ext.intersphinx',
'sphinx.ext.viewcode', 'sphinx.ext.viewcode',
'alabaster', 'alabaster',
'aiohttp_doctools',
] ]
# Add any paths that contain templates here, relative to this directory. # Add any paths that contain templates here, relative to this directory.

55
docs/reference.rst
View File

@ -13,16 +13,16 @@
Public API functions Public API functions
==================== ====================
.. coroutine:: remember(request, response, identity, **kwargs) .. coroutinefunction:: remember(request, response, identity, **kwargs)
Remember *identity* in *response*, e.g. by storing a cookie or Remember *identity* in *response*, e.g. by storing a cookie or
saving info into session. saving info into session.
The action is performed by registered The action is performed by registered
:coroutinemethod:`AbstractIdentityPolicy.remember`. :meth:`AbstractIdentityPolicy.remember`.
Usually the *idenity* is stored in user cookies homehow for using by Usually the *idenity* is stored in user cookies homehow for using by
:coroutine:`authorized_userid` and :coroutine:`permits`. :func:`authorized_userid` and :func:`permits`.
:param request: :class:`aiohttp.web.Request` object. :param request: :class:`aiohttp.web.Request` object.
@ -31,18 +31,18 @@ Public API functions
:param str identity: :class:`aiohttp.web.Request` object. :param str identity: :class:`aiohttp.web.Request` object.
:param **kwargs: additional arguments passed to :param kwargs: additional arguments passed to
:coroutinemethod:`AbstractIdentityPolicy.remember`. :meth:`AbstractIdentityPolicy.remember`.
They are policy-specific and may be used, e.g. for They are policy-specific and may be used, e.g. for
specifiying cookie lifetime. specifiying cookie lifetime.
.. coroutine:: forget(request, response) .. coroutinefunction:: forget(request, response)
Forget previously remembered :term:`identity`. Forget previously remembered :term:`identity`.
The action is performed by registered The action is performed by registered
:coroutinemethod:`AbstractIdentityPolicy.forget`. :meth:`AbstractIdentityPolicy.forget`.
:param request: :class:`aiohttp.web.Request` object. :param request: :class:`aiohttp.web.Request` object.
@ -50,11 +50,11 @@ Public API functions
descendants like :class:`aiohttp.web.Response`. descendants like :class:`aiohttp.web.Response`.
.. coroutine:: authorized_userid(request) .. coroutinefunction:: authorized_userid(request)
Retrieve :term:`userid`. Retrieve :term:`userid`.
The user should be registered by :coroutine:`remember` before the call. The user should be registered by :func:`remember` before the call.
:param request: :class:`aiohttp.web.Request` object. :param request: :class:`aiohttp.web.Request` object.
@ -62,7 +62,7 @@ Public API functions
without signed in user. without signed in user.
.. coroutine:: permits(request, permission, context=None) .. coroutinefunction:: permits(request, permission, context=None)
Check user's permission. Check user's permission.
@ -74,7 +74,7 @@ Public API functions
Actually it's a wrapper around Actually it's a wrapper around
:meth:`AbstractAuthorizationPolicy.permits` coroutine. :meth:`AbstractAuthorizationPolicy.permits` coroutine.
The user should be registered by :coroutine:`remember` before the call. The user should be registered by :func:`remember` before the call.
:param request: :class:`aiohttp.web.Request` object. :param request: :class:`aiohttp.web.Request` object.
@ -177,3 +177,32 @@ Identification policy
:param response: :class:`aiohttp.web.StreamResponse` object or :param response: :class:`aiohttp.web.StreamResponse` object or
derivative. derivative.
Authorization policy
---------------------
.. class:: AbstractAuthorizationPolicy
.. coroutinemethod:: authorized_userid(identity)
Retrieve authorized user id.
Abstract method, should be overriden by descendant.
:param identity: an :term:`identity` used for authorization.
:return: the :term:`userid` of the user identified by the
*identity* or ``None`` if no user exists related to the
identity.
.. coroutinemethod:: permits(identity, permission, context=None)
Check user permissions.
Abstract method, should be overriden by descendant.
:param identity: an :term:`identity` used for authorization.
:param permission: requested permission. The type of parameter
is not fixed and depends on implementation.