core/orm/user.py

from typing import List

from sqlalchemy import Column, Integer, String, ForeignKey
from sqlalchemy.orm import relationship

from orm import Permission
from orm.base import Base, local_session


class UserRole(Base):
	__tablename__ = 'user_role'
	
	id = None
	user_id: int = Column(ForeignKey("user.id"), primary_key = True)
	role_id: int = Column(ForeignKey("role.id"), primary_key = True)

class User(Base):
	__tablename__ = 'user'

	email: str = Column(String, unique=True, nullable=False)
	username: str = Column(String, nullable=False, comment="Name")
	password: str = Column(String, nullable=True, comment="Password")

	oauth_id: str = Column(String, nullable=True)

	roles = relationship("Role", secondary=UserRole.__table__)

	@classmethod
	def get_permission(cls, user_id):
		scope = {}
		with local_session() as session:
			user = session.query(User).filter(User.id == user_id).first()
			for role in user.roles:
				for p in role.permissions:
					if not p.resource_id in scope:
						scope[p.resource_id] = set()
					scope[p.resource_id].add(p.operation_id)
		return scope


if __name__ == '__main__':
	print(User.get_permission(user_id=1))
wip: redis, sqlalchemy, structured, etc 2021-06-28 09:08:09 +00:00			`from typing import List`

improve rbac 2021-08-17 09:14:26 +00:00			`from sqlalchemy import Column, Integer, String, ForeignKey`
			`from sqlalchemy.orm import relationship`
wip: redis, sqlalchemy, structured, etc 2021-06-28 09:08:09 +00:00
			`from orm import Permission`
global session to local session 2021-08-05 16:49:08 +00:00			`from orm.base import Base, local_session`
wip: redis, sqlalchemy, structured, etc 2021-06-28 09:08:09 +00:00

improve rbac 2021-08-17 09:14:26 +00:00			`class UserRole(Base):`
			`__tablename__ = 'user_role'`

			`id = None`
			`user_id: int = Column(ForeignKey("user.id"), primary_key = True)`
			`role_id: int = Column(ForeignKey("role.id"), primary_key = True)`

wip: redis, sqlalchemy, structured, etc 2021-06-28 09:08:09 +00:00			`class User(Base):`
global session to local session 2021-08-05 16:49:08 +00:00			`__tablename__ = 'user'`
wip: redis, sqlalchemy, structured, etc 2021-06-28 09:08:09 +00:00
updateShout 2021-08-18 16:53:55 +00:00			`email: str = Column(String, unique=True, nullable=False)`
global session to local session 2021-08-05 16:49:08 +00:00			`username: str = Column(String, nullable=False, comment="Name")`
			`password: str = Column(String, nullable=True, comment="Password")`
register user, sign in and sign out working 2021-06-29 10:26:46 +00:00
global session to local session 2021-08-05 16:49:08 +00:00			`oauth_id: str = Column(String, nullable=True)`
wip: redis, sqlalchemy, structured, etc 2021-06-28 09:08:09 +00:00
improve rbac 2021-08-17 09:14:26 +00:00			`roles = relationship("Role", secondary=UserRole.__table__)`

global session to local session 2021-08-05 16:49:08 +00:00			`@classmethod`
			`def get_permission(cls, user_id):`
improve rbac 2021-08-17 09:14:26 +00:00			`scope = {}`
global session to local session 2021-08-05 16:49:08 +00:00			`with local_session() as session:`
improve rbac 2021-08-17 09:14:26 +00:00			`user = session.query(User).filter(User.id == user_id).first()`
			`for role in user.roles:`
			`for p in role.permissions:`
updateShout 2021-08-18 16:53:55 +00:00			`if not p.resource_id in scope:`
			`scope[p.resource_id] = set()`
			`scope[p.resource_id].add(p.operation_id)`
improve rbac 2021-08-17 09:14:26 +00:00			`return scope`
wip: redis, sqlalchemy, structured, etc 2021-06-28 09:08:09 +00:00

			`if __name__ == '__main__':`
global session to local session 2021-08-05 16:49:08 +00:00			`print(User.get_permission(user_id=1))`