1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
|
##############################################################################
#
# Copyright (c) 2002 Zope Foundation and Contributors.
# All Rights Reserved.
#
# This software is subject to the provisions of the Zope Public License,
# Version 2.1 (ZPL). A copy of the ZPL should accompany this distribution.
# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY AND ALL EXPRESS OR IMPLIED
# WARRANTIES ARE DISCLAIMED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
# WARRANTIES OF TITLE, MERCHANTABILITY, AGAINST INFRINGEMENT, AND FITNESS
# FOR A PARTICULAR PURPOSE.
#
##############################################################################
"""Permissions
"""
__docformat__ = "reStructuredText"
import operator
from zope.component import getUtilitiesFor
from zope.component import queryUtility
from zope.interface import directlyProvides
from zope.interface import implementer
from zope.schema.interfaces import IVocabularyFactory
from zope.schema.vocabulary import SimpleTerm
from zope.schema.vocabulary import SimpleVocabulary
from zope.security.checker import CheckerPublic
from zope.security.interfaces import IPermission
from zope.security.interfaces import PUBLIC_PERMISSION_NAME as zope_Public
@implementer(IPermission)
class Permission(object):
def __init__(self, id, title="", description=""):
self.id = id
self.title = title
self.description = description
def checkPermission(context, permission_id):
"""Check whether a given permission exists in the provided context.
"""
if permission_id is CheckerPublic:
return
if not queryUtility(IPermission, permission_id, context=context):
raise ValueError("Undefined permission id", permission_id)
def allPermissions(context=None):
"""Get the ids of all defined permissions
"""
for name, _permission in getUtilitiesFor(IPermission, context):
if name != zope_Public:
yield name
def PermissionsVocabulary(context=None):
"""A vocabulary of permission IDs.
Term values are permissions, while term tokens are permission IDs.
"""
terms = []
for name, permission in getUtilitiesFor(IPermission, context):
terms.append(SimpleTerm(permission, name))
return SimpleVocabulary(terms)
directlyProvides(PermissionsVocabulary, IVocabularyFactory)
def PermissionIdsVocabulary(context=None):
"""A vocabulary of permission IDs.
Term values are the permission ID strings except for 'zope.Public', which
is the global permission CheckerPublic.
Term titles are the permission ID strings except for 'zope.Public', which
is shortened to 'Public'.
Terms are sorted by title except for 'Public', which always appears as
the first term.
"""
terms = []
has_public = False
for name, _permission in getUtilitiesFor(IPermission, context):
if name == zope_Public:
has_public = True
else:
terms.append(SimpleTerm(name, name, name))
terms = sorted(terms, key=operator.attrgetter('title'))
if has_public:
terms.insert(0, SimpleTerm(CheckerPublic, zope_Public, u'Public'))
return SimpleVocabulary(terms)
directlyProvides(PermissionIdsVocabulary, IVocabularyFactory)
|
