diff --git a/app/decorators.py b/app/decorators.py new file mode 100644 index 000000000..14ddc0347 --- /dev/null +++ b/app/decorators.py @@ -0,0 +1,19 @@ +from functools import wraps +from flask import abort +from flask_login import current_user +from .models import Permission + + +def permission_required(permission): + def decorator(f): + @wraps(f) + def decorated_function(*args, **kwargs): + if not current_user.can(permission): + abort(403) + return f(*args, **kwargs) + return decorated_function + return decorator + + +def admin_required(f): + return permission_required(Permission.ADMIN)(f) diff --git a/app/main/__init__.py b/app/main/__init__.py index 90380f84d..ef760402f 100644 --- a/app/main/__init__.py +++ b/app/main/__init__.py @@ -3,3 +3,9 @@ main = Blueprint('main', __name__) from . import views, errors +from ..models import Permission + + +@main.app_context_processor +def inject_permissions(): + return dict(Permission=Permission) diff --git a/app/main/errors.py b/app/main/errors.py index 7c76c776d..416c15142 100644 --- a/app/main/errors.py +++ b/app/main/errors.py @@ -2,6 +2,11 @@ from . import main +@main.app_errorhandler(403) +def forbidden(e): + return render_template('403.html'), 403 + + @main.app_errorhandler(404) def page_not_found(e): return render_template('404.html'), 404 diff --git a/app/models.py b/app/models.py index bfe4c6b50..c00a213eb 100644 --- a/app/models.py +++ b/app/models.py @@ -1,16 +1,67 @@ from werkzeug.security import generate_password_hash, check_password_hash from itsdangerous import TimedJSONWebSignatureSerializer as Serializer from flask import current_app -from flask_login import UserMixin +from flask_login import UserMixin, AnonymousUserMixin from . import db, login_manager +class Permission: + FOLLOW = 1 + COMMENT = 2 + WRITE = 4 + MODERATE = 8 + ADMIN = 16 + + class Role(db.Model): __tablename__ = 'roles' id = db.Column(db.Integer, primary_key=True) name = db.Column(db.String(64), unique=True) + default = db.Column(db.Boolean, default=False, index=True) + permissions = db.Column(db.Integer) users = db.relationship('User', backref='role', lazy='dynamic') + def __init__(self, **kwargs): + super(Role, self).__init__(**kwargs) + if self.permissions is None: + self.permissions = 0 + + @staticmethod + def insert_roles(): + roles = { + 'User': [Permission.FOLLOW, Permission.COMMENT, Permission.WRITE], + 'Moderator': [Permission.FOLLOW, Permission.COMMENT, + Permission.WRITE, Permission.MODERATE], + 'Administrator': [Permission.FOLLOW, Permission.COMMENT, + Permission.WRITE, Permission.MODERATE, + Permission.ADMIN], + } + default_role = 'User' + for r in roles: + role = Role.query.filter_by(name=r).first() + if role is None: + role = Role(name=r) + role.reset_permissions() + for perm in roles[r]: + role.add_permission(perm) + role.default = (role.name == default_role) + db.session.add(role) + db.session.commit() + + def add_permission(self, perm): + if not self.has_permission(perm): + self.permissions += perm + + def remove_permission(self, perm): + if self.has_permission(perm): + self.permissions -= perm + + def reset_permissions(self): + self.permissions = 0 + + def has_permission(self, perm): + return self.permissions & perm == perm + def __repr__(self): return '' % self.name @@ -24,6 +75,14 @@ class User(UserMixin, db.Model): password_hash = db.Column(db.String(128)) confirmed = db.Column(db.Boolean, default=False) + def __init__(self, **kwargs): + super(User, self).__init__(**kwargs) + if self.role is None: + if self.email == current_app.config['FLASKY_ADMIN']: + self.role = Role.query.filter_by(name='Administrator').first() + if self.role is None: + self.role = Role.query.filter_by(default=True).first() + @property def password(self): raise AttributeError('password is not a readable attribute') @@ -91,10 +150,26 @@ def change_email(self, token): db.session.add(self) return True + def can(self, perm): + return self.role is not None and self.role.has_permission(perm) + + def is_administrator(self): + return self.can(Permission.ADMIN) + def __repr__(self): return '' % self.username +class AnonymousUser(AnonymousUserMixin): + def can(self, permissions): + return False + + def is_administrator(self): + return False + +login_manager.anonymous_user = AnonymousUser + + @login_manager.user_loader def load_user(user_id): return User.query.get(int(user_id)) diff --git a/app/templates/403.html b/app/templates/403.html new file mode 100644 index 000000000..9541b9e8d --- /dev/null +++ b/app/templates/403.html @@ -0,0 +1,9 @@ +{% extends "base.html" %} + +{% block title %}Flasky - Forbidden{% endblock %} + +{% block page_content %} + +{% endblock %} diff --git a/flasky.py b/flasky.py index 8a4d1adca..31b798c89 100644 --- a/flasky.py +++ b/flasky.py @@ -2,7 +2,7 @@ import click from flask_migrate import Migrate from app import create_app, db -from app.models import User, Role +from app.models import User, Role, Permission app = create_app(os.getenv('FLASK_CONFIG') or 'default') migrate = Migrate(app, db) @@ -10,7 +10,7 @@ @app.shell_context_processor def make_shell_context(): - return dict(db=db, User=User, Role=Role) + return dict(db=db, User=User, Role=Role, Permission=Permission) @app.cli.command() diff --git a/migrations/versions/56ed7d33de8d_user_roles.py b/migrations/versions/56ed7d33de8d_user_roles.py new file mode 100644 index 000000000..15b68729a --- /dev/null +++ b/migrations/versions/56ed7d33de8d_user_roles.py @@ -0,0 +1,30 @@ +"""user roles + +Revision ID: 56ed7d33de8d +Revises: 190163627111 +Create Date: 2013-12-29 22:19:54.212604 + +""" + +# revision identifiers, used by Alembic. +revision = '56ed7d33de8d' +down_revision = '190163627111' + +from alembic import op +import sqlalchemy as sa + + +def upgrade(): + ### commands auto generated by Alembic - please adjust! ### + op.add_column('roles', sa.Column('default', sa.Boolean(), nullable=True)) + op.add_column('roles', sa.Column('permissions', sa.Integer(), nullable=True)) + op.create_index('ix_roles_default', 'roles', ['default'], unique=False) + ### end Alembic commands ### + + +def downgrade(): + ### commands auto generated by Alembic - please adjust! ### + op.drop_index('ix_roles_default', 'roles') + op.drop_column('roles', 'permissions') + op.drop_column('roles', 'default') + ### end Alembic commands ### diff --git a/tests/test_user_model.py b/tests/test_user_model.py index 201b3bac8..89aa5c9a4 100644 --- a/tests/test_user_model.py +++ b/tests/test_user_model.py @@ -1,7 +1,7 @@ import unittest import time from app import create_app, db -from app.models import User +from app.models import User, AnonymousUser, Role, Permission class UserModelTestCase(unittest.TestCase): @@ -10,6 +10,7 @@ def setUp(self): self.app_context = self.app.app_context() self.app_context.push() db.create_all() + Role.insert_roles() def tearDown(self): db.session.remove() @@ -102,3 +103,37 @@ def test_duplicate_email_change_token(self): token = u2.generate_email_change_token('john@example.com') self.assertFalse(u2.change_email(token)) self.assertTrue(u2.email == 'susan@example.org') + + def test_user_role(self): + u = User(email='john@example.com', password='cat') + self.assertTrue(u.can(Permission.FOLLOW)) + self.assertTrue(u.can(Permission.COMMENT)) + self.assertTrue(u.can(Permission.WRITE)) + self.assertFalse(u.can(Permission.MODERATE)) + self.assertFalse(u.can(Permission.ADMIN)) + + def test_moderator_role(self): + r = Role.query.filter_by(name='Moderator').first() + u = User(email='john@example.com', password='cat', role=r) + self.assertTrue(u.can(Permission.FOLLOW)) + self.assertTrue(u.can(Permission.COMMENT)) + self.assertTrue(u.can(Permission.WRITE)) + self.assertTrue(u.can(Permission.MODERATE)) + self.assertFalse(u.can(Permission.ADMIN)) + + def test_administrator_role(self): + r = Role.query.filter_by(name='Administrator').first() + u = User(email='john@example.com', password='cat', role=r) + self.assertTrue(u.can(Permission.FOLLOW)) + self.assertTrue(u.can(Permission.COMMENT)) + self.assertTrue(u.can(Permission.WRITE)) + self.assertTrue(u.can(Permission.MODERATE)) + self.assertTrue(u.can(Permission.ADMIN)) + + def test_anonymous_user(self): + u = AnonymousUser() + self.assertFalse(u.can(Permission.FOLLOW)) + self.assertFalse(u.can(Permission.COMMENT)) + self.assertFalse(u.can(Permission.WRITE)) + self.assertFalse(u.can(Permission.MODERATE)) + self.assertFalse(u.can(Permission.ADMIN))