Work on documentation
This commit is contained in:
Andrew Svetlov
parent
a0f73c85eb
commit
d4c6dc8ff5
|
|
@ -28,6 +28,8 @@ def remember(request, response, identity, **kwargs):
|
||||||
|
|
||||||
@asyncio.coroutine
|
@asyncio.coroutine
|
||||||
def forget(request, response):
|
def forget(request, response):
|
||||||
|
"""Forget previously remembered identity."""
|
||||||
|
|
||||||
identity_policy = request.app.get(IDENTITY_KEY)
|
identity_policy = request.app.get(IDENTITY_KEY)
|
||||||
if identity_policy is None:
|
if identity_policy is None:
|
||||||
text = ("Security subsystem is not initialized, "
|
text = ("Security subsystem is not initialized, "
|
||||||
|
|
|
||||||
|
|
@ -24,3 +24,18 @@
|
||||||
Reference implementation of :pep:`3156`
|
Reference implementation of :pep:`3156`
|
||||||
|
|
||||||
https://pypi.python.org/pypi/asyncio/
|
https://pypi.python.org/pypi/asyncio/
|
||||||
|
|
||||||
|
identity
|
||||||
|
|
||||||
|
Session-wide :class:`str` for identifying user.
|
||||||
|
|
||||||
|
Stored in local storage (client-side cookie or server-side storage).
|
||||||
|
|
||||||
|
Use :coroutine:`~aiohttp_session.remember` for saving *identity* (login)
|
||||||
|
and :coroutine:`~aiohttp_session.forget` for dropping it (logout).
|
||||||
|
|
||||||
|
*identity* is used for getting :term:`userid` and :term:`permissions`.
|
||||||
|
|
||||||
|
userid
|
||||||
|
|
||||||
|
User's ID, most likely his *login* or *email*
|
||||||
|
|
|
||||||
|
|
@ -15,7 +15,8 @@ Public API functions
|
||||||
|
|
||||||
.. coroutine:: remember(request, response, identity, **kwargs)
|
.. coroutine:: remember(request, response, identity, **kwargs)
|
||||||
|
|
||||||
Remember identity into response.
|
Remember *identity* in *response*, e.g. by storing a cookie or
|
||||||
|
saving info into session.
|
||||||
|
|
||||||
The action is performed by registered
|
The action is performed by registered
|
||||||
:coroutinemethod:`AbstractIdentityPolicy.remember`.
|
:coroutinemethod:`AbstractIdentityPolicy.remember`.
|
||||||
|
|
@ -30,6 +31,44 @@ Public API functions
|
||||||
|
|
||||||
:param str identity: :class:`aiohttp.web.Request` object.
|
:param str identity: :class:`aiohttp.web.Request` object.
|
||||||
|
|
||||||
|
:param **kwargs: additional arguments passed to
|
||||||
|
:coroutinemethod:`AbstractIdentityPolicy.remember`.
|
||||||
|
|
||||||
|
They are policy-specific and may be used, e.g. for
|
||||||
|
specifiying cookie lifetime.
|
||||||
|
|
||||||
|
.. coroutine:: forget(request, response)
|
||||||
|
|
||||||
|
Forget previously remembered :term:`identity`.
|
||||||
|
|
||||||
|
The action is performed by registered
|
||||||
|
:coroutinemethod:`AbstractIdentityPolicy.forget`.
|
||||||
|
|
||||||
|
:param request: :class:`aiohttp.web.Request` object.
|
||||||
|
|
||||||
|
:param response: :class:`aiohttp.web.StreamResponse` and
|
||||||
|
descendants like :class:`aiohttp.web.Response`.
|
||||||
|
|
||||||
|
|
||||||
|
.. coroutine:: authorized_userid(request)
|
||||||
|
|
||||||
|
Retrieve :term:`userid`.
|
||||||
|
|
||||||
|
The user should be registered by :coroutine:`remember` before the call.
|
||||||
|
|
||||||
|
:param request: :class:`aiohttp.web.Request` object.
|
||||||
|
|
||||||
|
:return: :class:`str` :term:`userid` or ``None`` for not signed in users.
|
||||||
|
|
||||||
|
|
||||||
|
.. coroutine:: permits(request, permission, context=None)
|
||||||
|
|
||||||
|
:param request: :class:`aiohttp.web.Request` object.
|
||||||
|
|
||||||
|
:return: ``True`` if registered user has requested *permission*,
|
||||||
|
``False`` otherwise.
|
||||||
|
|
||||||
|
|
||||||
.. function:: setup(app, identity_policy, autz_policy)
|
.. function:: setup(app, identity_policy, autz_policy)
|
||||||
|
|
||||||
Setup :mod:`aiohttp` application with security policies.
|
Setup :mod:`aiohttp` application with security policies.
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue