1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
|
"""Handle privileges"""
from typing import Any, Iterable, NamedTuple
from gn3.auth import db
from gn3.auth.authorisation.users import User
class Privilege(NamedTuple):
"""Class representing a privilege: creates immutable objects."""
privilege_id: str
privilege_description: str
def dictify(self) -> dict[str, Any]:
"""Return a dict representation of `Privilege` objects."""
return {
"privilege_id": self.privilege_id,
"privilege_description": self.privilege_description
}
def user_privileges(conn: db.DbConnection, user: User) -> Iterable[Privilege]:
"""Fetch the user's privileges from the database."""
with db.cursor(conn) as cursor:
cursor.execute(
("SELECT p.privilege_id, p.privilege_description "
"FROM user_roles AS ur "
"INNER JOIN role_privileges AS rp ON ur.role_id=rp.role_id "
"INNER JOIN privileges AS p ON rp.privilege_id=p.privilege_id "
"WHERE ur.user_id=?"),
(str(user.user_id),))
results = cursor.fetchall()
return (Privilege(row[0], row[1]) for row in results)
def privileges_by_ids(
conn: db.DbConnection, privileges_ids: tuple[str, ...]) -> tuple[
Privilege, ...]:
"""Fetch privileges by their ids."""
if len(privileges_ids) == 0:
return tuple()
with db.cursor(conn) as cursor:
clause = ", ".join(["?"] * len(privileges_ids))
cursor.execute(
f"SELECT * FROM privileges WHERE privilege_id IN ({clause})",
privileges_ids)
return tuple(
Privilege(row["privilege_id"], row["privilege_description"])
for row in cursor.fetchall())
|