RoleAssignmentsController - Code Metrics - Inspection of "Merge pull request #3397 from StackStorm/rbac_role..." - StackStorm/st2 - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( 4b1f79...4860bd )

unknown

created 2017-05-11 10:00 UTC

RoleAssignmentsController A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	32
Duplicated Lines	0 %

Importance

Changes

Metric	Value
c	0
b	0
f	0
dl	0
loc	32
rs	10
wmc	2

2 Methods

Rating	Name	Duplication	Size	Complexity
A	get_all()	0	9	1
A	get_one()	0	10	1

# Licensed to the StackStorm, Inc ('StackStorm') under one or more
# contributor license agreements.  See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

import copy

from st2api.controllers.resource import ResourceController
from st2common.models.api.rbac import RoleAPI
from st2common.models.api.rbac import UserRoleAssignmentAPI
from st2common.persistence.rbac import Role
from st2common.persistence.rbac import UserRoleAssignment
from st2common.rbac.types import RESOURCE_TYPE_TO_PERMISSION_TYPES_MAP
from st2common.rbac import utils as rbac_utils
from st2common.router import exc

__all__ = [
    'RolesController',
    'RoleAssignmentsController',
    'PermissionTypesController'
]


class RolesController(ResourceController):
    model = RoleAPI
    access = Role
    supported_filters = {
        'name': 'name',
        'system': 'system'
    }

    query_options = {
        'sort': ['name']
    }

    def get_one(self, name_or_id, requester_user):
        rbac_utils.assert_user_is_admin(user_db=requester_user)

        return self._get_one_by_name_or_id(name_or_id=name_or_id,
                                           permission_type=None,
                                           requester_user=requester_user)

    def get_all(self, requester_user, sort=None, offset=0, limit=None, **raw_filters):
        rbac_utils.assert_user_is_admin(user_db=requester_user)
        return self._get_all(sort=sort,
                             offset=offset,
                             limit=limit,
                             raw_filters=raw_filters)


class RoleAssignmentsController(ResourceController):
    """
    Meta controller for listing role assignments.
    """
    model = UserRoleAssignmentAPI
    access = UserRoleAssignment
    supported_filters = {
        'user': 'user',
        'role': 'role',
        'remote': 'is_remote'
    }

    def get_all(self, requester_user, sort=None, offset=0, limit=None, **raw_filters):
        user = raw_filters.get('user', None)
        rbac_utils.assert_user_is_admin_or_operating_on_own_resource(user_db=requester_user,
                                                                     user=user)

        return self._get_all(sort=sort,
                             offset=offset,
                             limit=limit,
                             raw_filters=raw_filters)

    def get_one(self, id, requester_user):

        result = self._get_one_by_id(id,
                                   requester_user=requester_user,
                                   permission_type=None)
        user = getattr(result, 'user', None)

        rbac_utils.assert_user_is_admin_or_operating_on_own_resource(user_db=requester_user,
                                                                     user=user)

        return result


class PermissionTypesController(object):
    """
    Meta controller for listing all the available permission types.
    """

    def get_all(self, requester_user):
        """
            List all the available permission types.

            Handles requests:
                GET /rbac/permission_types
        """
        rbac_utils.assert_user_is_admin(user_db=requester_user)

        result = copy.deepcopy(RESOURCE_TYPE_TO_PERMISSION_TYPES_MAP)
        return result

    def get_one(self, resource_type, requester_user):
        """
            List all the available permission types for a particular resource type.

            Handles requests:
                GET /rbac/permission_types
        """
        rbac_utils.assert_user_is_admin(user_db=requester_user)

        permission_types = RESOURCE_TYPE_TO_PERMISSION_TYPES_MAP.get(resource_type, None)
        if permission_types is None:
            raise exc.HTTPNotFound('Invalid resource type: %s' % (resource_type))

        return permission_types


roles_controller = RolesController()
role_assignments_controller = RoleAssignmentsController()
permission_types_controller = PermissionTypesController()


1			# Licensed to the StackStorm, Inc ('StackStorm') under one or more
2			# contributor license agreements. See the NOTICE file distributed with
3			# this work for additional information regarding copyright ownership.
4			# The ASF licenses this file to You under the Apache License, Version 2.0
5			# (the "License"); you may not use this file except in compliance with
6			# the License. You may obtain a copy of the License at
7			#
8			# http://www.apache.org/licenses/LICENSE-2.0
9			#
10			# Unless required by applicable law or agreed to in writing, software
11			# distributed under the License is distributed on an "AS IS" BASIS,
12			# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13			# See the License for the specific language governing permissions and
14			# limitations under the License.
15
16			import copy
17
18			from st2api.controllers.resource import ResourceController
19			from st2common.models.api.rbac import RoleAPI
20			from st2common.models.api.rbac import UserRoleAssignmentAPI
21			from st2common.persistence.rbac import Role
22			from st2common.persistence.rbac import UserRoleAssignment
23			from st2common.rbac.types import RESOURCE_TYPE_TO_PERMISSION_TYPES_MAP
24			from st2common.rbac import utils as rbac_utils
25			from st2common.router import exc
26
27			__all__ = [
28			'RolesController',
29			'RoleAssignmentsController',
30			'PermissionTypesController'
31			]
32
33
34			class RolesController(ResourceController):
35			model = RoleAPI
36			access = Role
37			supported_filters = {
38			'name': 'name',
39			'system': 'system'
40			}
41
42			query_options = {
43			'sort': ['name']
44			}
45
46			def get_one(self, name_or_id, requester_user):
47			rbac_utils.assert_user_is_admin(user_db=requester_user)
48
49			return self._get_one_by_name_or_id(name_or_id=name_or_id,
50			permission_type=None,
51			requester_user=requester_user)
52
53			def get_all(self, requester_user, sort=None, offset=0, limit=None, **raw_filters):
54			rbac_utils.assert_user_is_admin(user_db=requester_user)
55			return self._get_all(sort=sort,
56			offset=offset,
57			limit=limit,
58			raw_filters=raw_filters)
59
60
61			class RoleAssignmentsController(ResourceController):
62			"""
63			Meta controller for listing role assignments.
64			"""
65			model = UserRoleAssignmentAPI
66			access = UserRoleAssignment
67			supported_filters = {
68			'user': 'user',
69			'role': 'role',
70			'remote': 'is_remote'
71			}
72
73			def get_all(self, requester_user, sort=None, offset=0, limit=None, **raw_filters):
74			user = raw_filters.get('user', None)
75			rbac_utils.assert_user_is_admin_or_operating_on_own_resource(user_db=requester_user,
76			user=user)
77
78			return self._get_all(sort=sort,
79			offset=offset,
80			limit=limit,
81			raw_filters=raw_filters)
82
83			def get_one(self, id, requester_user):
			0 ignored issues – show Bug Best Practice introduced 2017-05-08 12:15 UTC by Report Bug Copy Issue Report This seems to re-define the built-in `id`. It is generally discouraged to redefine built-ins as this makes code very hard to read. Loading history...
84			result = self._get_one_by_id(id,
85			requester_user=requester_user,
86			permission_type=None)
87			user = getattr(result, 'user', None)
88
89			rbac_utils.assert_user_is_admin_or_operating_on_own_resource(user_db=requester_user,
90			user=user)
91
92			return result
93
94
95			class PermissionTypesController(object):
96			"""
97			Meta controller for listing all the available permission types.
98			"""
99
100			def get_all(self, requester_user):
101			"""
102			List all the available permission types.
103
104			Handles requests:
105			GET /rbac/permission_types
106			"""
107			rbac_utils.assert_user_is_admin(user_db=requester_user)
108
109			result = copy.deepcopy(RESOURCE_TYPE_TO_PERMISSION_TYPES_MAP)
110			return result
111
112			def get_one(self, resource_type, requester_user):
113			"""
114			List all the available permission types for a particular resource type.
115
116			Handles requests:
117			GET /rbac/permission_types
118			"""
119			rbac_utils.assert_user_is_admin(user_db=requester_user)
120
121			permission_types = RESOURCE_TYPE_TO_PERMISSION_TYPES_MAP.get(resource_type, None)
122			if permission_types is None:
123			raise exc.HTTPNotFound('Invalid resource type: %s' % (resource_type))
124
125			return permission_types
126
127
128			roles_controller = RolesController()
129			role_assignments_controller = RoleAssignmentsController()
130			permission_types_controller = PermissionTypesController()
131

StackStorm / st2

Push — master ( 4b1f79...4860bd )

RoleAssignmentsController A

Complexity

Size/Duplication

Importance

2 Methods

Duplication Side-by-Side

Filter issues like