Codebase list python-castellan / 02deb4c castellan / context.py
02deb4c

Tree @02deb4c (Download .tar.gz)

context.py @02deb4craw · history · blame 

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
# Copyright  2011-2012 OpenStack LLC.
# All Rights Reserved.
#
#    Licensed under the Apache License, Version 2.0 (the "License"); you may
#    not use this file except in compliance with the License. You may obtain
#    a copy of the License at
#
#         http://www.apache.org/licenses/LICENSE-2.0
#
#    Unless required by applicable law or agreed to in writing, software
#    distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
#    WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
#    License for the specific language governing permissions and limitations
#    under the License.

from oslo_config import cfg
from oslo_policy import policy
from oslo_utils import uuidutils

from castellan.openstack.common import local


CONF = cfg.CONF


class RequestContext(object):
    """User security context object

    Stores information about the security context under which the user
    accesses the system, as well as additional request information.
    """

    def __init__(self, auth_token=None, user=None, project=None, roles=None,
                 is_admin=False, read_only=False, show_deleted=False,
                 owner_is_project=True, service_catalog=None,
                 policy_enforcer=None):
        self.auth_token = auth_token
        self.user = user
        self.project = project
        self.roles = roles or []
        self.read_only = read_only
        self.owner_is_project = owner_is_project
        self.request_id = uuidutils.generate_uuid()
        self.service_catalog = service_catalog
        self.policy_enforcer = policy_enforcer or policy.Enforcer(CONF)
        self.is_admin = is_admin

        if not hasattr(local.store, 'context'):
            self.update_store()

    def to_dict(self):
        return {
            'request_id': self.request_id,
            'user': self.user,
            'user_id': self.user,
            'project': self.project,
            'project_id': self.project,
            'roles': self.roles,
            'auth_token': self.auth_token,
            'service_catalog': self.service_catalog,
        }

    @classmethod
    def from_dict(cls, values):
        return cls(**values)

    def update_store(self):
        local.store.context = self

    @property
    def owner(self):
        """Return the owner to correlate with key."""
        if self.owner_is_project:
            return self.project
        return self.user