TiagoRG
/
sio-2425
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ACL

This commit is contained in:
JoaoBastos023 2024-12-17 10:29:06 +00:00
parent 6c1de74a12
commit d843c3560b
1 changed files with 41 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
delivery2/client/bin/rep_acl_doc
View File

@ -8,6 +8,8 @@ import argparse
from subject import main from subject import main
from lib import digest
logging.basicConfig(format='%(levelname)s\t- %(message)s') logging.basicConfig(format='%(levelname)s\t- %(message)s')
logger = logging.getLogger() logger = logging.getLogger()
logger.setLevel(logging.INFO) logger.setLevel(logging.INFO)
@ -16,7 +18,7 @@ state = main(sys.argv)
BASE_DIR = os.path.join(os.path.expanduser('~'), '.sio/') BASE_DIR = os.path.join(os.path.expanduser('~'), '.sio/')
#session file - role - permission #session file - document name - +/- - role - permission
def aclDoc(args): def aclDoc(args):
parser = argparse.ArgumentParser() parser = argparse.ArgumentParser()
@ -37,9 +39,6 @@ def aclDoc(args):
logger.error("Need session file, document name, +/- , role and permission.") logger.error("Need session file, document name, +/- , role and permission.")
sys.exit(1) sys.exit(1)
#Validate role name
#TODO
# Check for session file # Check for session file
if (not os.path.isfile(BASE_DIR + args.session)): if (not os.path.isfile(BASE_DIR + args.session)):
logger.error("File '" + args.session + "' not found.") logger.error("File '" + args.session + "' not found.")
@ -49,13 +48,49 @@ def aclDoc(args):
with open(BASE_DIR + args.session, 'r') as f: with open(BASE_DIR + args.session, 'r') as f:
args.session = json.load(f) args.session = json.load(f)
# TODO: # Get roles in session
try: try:
req = requests.post(f'http://{state['REP_ADDRESS']}/user/' + args.username + '/activate', headers={'Authorization': args.session['token']}) req = requests.get(f'http://{state['REP_ADDRESS']}/role/session/list', headers={'Authorization': args.session['token']})
req.raise_for_status() req.raise_for_status()
except requests.exceptions.RequestException as errex: except requests.exceptions.RequestException as errex:
logger.error("Failed to obtain response from server.") logger.error("Failed to obtain response from server.")
sys.exit(-1) sys.exit(-1)
# Validate role name
roles = req.json()
if args.role not in roles.items():
logger.error("Role does not exist.")
sys.exit(1)
# Check permission
if args.permission not in ['ROLE_ACL', 'SUBJECT_NEW', 'SUBJECT_DOWN', 'SUBJECT_UP', 'DOC_NEW']:
logger.error("Permission is not valid.")
sys.exit(1)
# Check change operation
if args.change == '+':
change = 'add'
elif args.change == '-':
change = 'remove'
else:
logger.error("Invalid change operation (+ or -).")
sys.exit(1)
document_handle = digest.get_hash(bytes(args.name, encoding='utf-8'))
payload = {'document_handle' : document_handle, 'role' : args.role, 'perm' : args.permission, 'operation' : change}
try:
req = requests.post(f'http://{state['REP_ADDRESS']}/file/acl',
json=json.dumps(payload),
headers={'Authorization': args.session['token']})
req.raise_for_status()
except requests.exceptions.RequestException as errex:
logger.error("Failed to obtain response from server.")
sys.exit(-1)
# Operation success
logger.info("ACL changed succesfully.")
if __name__ == '__main__': if __name__ == '__main__':
aclDoc(sys.argv[1:]) aclDoc(sys.argv[1:])