Home Explore Help
Sign In
mirrors
/
Radicale
mirror of https://github.com/Kozea/Radicale
1
0
Fork 0
Files Issues 0 Wiki
Tree: a17ad1b6a3
Branches Tags
Radicale
/
radicale
/
authorization
/
__init__.py

__init__.py 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. # -*- coding: utf-8 -*-
    2. 

  2. #
    3. 

  3. # This file is part of Radicale Server - Calendar Server
    4. 

  4. # Copyright © 2008-2012 Guillaume Ayoub
    5. 

  5. # Copyright © 2008 Nicolas Kandel
    6. 

  6. # Copyright © 2008 Pascal Halter
    7. 

  7. #
    8. 

  8. # This library is free software: you can redistribute it and/or modify
    9. 

  9. # it under the terms of the GNU General Public License as published by
    10. 

  10. # the Free Software Foundation, either version 3 of the License, or
    11. 

  11. # (at your option) any later version.
    12. 

  12. #
    13. 

  13. # This library is distributed in the hope that it will be useful,
    14. 

  14. # but WITHOUT ANY WARRANTY; without even the implied warranty of
    15. 

  15. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    16. 

  16. # GNU General Public License for more details.
    17. 

  17. #
    18. 

  18. # You should have received a copy of the GNU General Public License
    19. 

  19. # along with Radicale.  If not, see <http://www.gnu.org/licenses/>.
    20. 

  20. 

  21. """
    22. 

  22. Users and rights management.
    23. 

  23. 

  24. This module loads a list of users with access rights, according to the acl
    25. 

  25. configuration.
    26. 

  26. 

  27. """
    28. 

  28. 

  29. from radicale import config, log
    30. 

  30. 

  31. 

  32. AUTHORIZATION_PREFIX = "authorization"
    33. 

  33. 

  34. PUBLIC_USERS = []
    35. 

  35. PRIVATE_USERS = []
    36. 

  36. 

  37. 

  38. 

  39. def _config_users(name):
    40. 

  40.     """Get an iterable of strings from the configuraton string [acl] ``name``.
    41. 

  41. 

  42.     The values must be separated by a comma. The whitespace characters are
    43. 

  43.     stripped at the beginning and at the end of the values.
    44. 

  44. 

  45.     """
    46. 

  46.     for user in config.get(AUTHORIZATION_PREFIX, name).split(","):
    47. 

  47.         user = user.strip()
    48. 

  48.         yield None if user == "None" else user
    49. 

  49. 

  50. 

  51. def load():
    52. 

  52.     """Load list of available ACL managers."""
    53. 

  53.     
    54. 

  54.     PUBLIC_USERS.extend(_config_users("public_users"))
    55. 

  55.     PRIVATE_USERS.extend(_config_users("private_users"))
    56. 

  56.     
    57. 

  57.     authorization_type = config.get(AUTHORIZATION_PREFIX, "type")
    58. 

  58.     log.LOGGER.debug("auth type = " + authorization_type)
    59. 

  59.     if authorization_type == "None":
    60. 

  60.         return None
    61. 

  61.     else:
    62. 

  62.         module = __import__("authorization.%s" % authorization_type, globals=globals(), level=2)
    63. 

  63.         return getattr(module, authorization_type)
    64. 

  64. 

  65. 

  66. def may_read(user, collection):
    67. 

  67.     if (collection.owner not in PRIVATE_USERS and user != collection.owner):
    68. 

  68.         # owner is not private and is not user, forbidden
    69. 

  69.         return False
    70. 

  70. 

  71.     return read_authorized(user, collection)
    72. 

  72.     
    73. 

  73. def may_write(user, collection):
    74. 

  74.     return write_authorized(user, collection)
    75. 

  75.     
    76. 

  76.     
    77.