source: main/waeup.kofa/branches/henrik-regista/src/waeup/kofa/permissions.txt @ 11947

Last change on this file since 11947 was 11947, checked in by Henrik Bettermann, 10 years ago

Enucleation. Keep only the portal's framework. Remove university, students, applicants, hostels and accesscodes modules.
File size: 2.6 KB
Line 
1Kofa permissions and roles
2**************************
3
4Permissions and roles used in a Kofa portal.
5
6.. :doctest:
7.. :layer: waeup.kofa.testing.KofaUnitTestLayer
8
9Convenience functions
10=====================
11
12:mod:`waeup.kofa` offers some convenience functions to handle security
13roles.
14
15:func:`get_all_roles`
16---------------------
17
18Gives us all roles defined in Kofa. We get tuples of
19kind
20
21  ``(<ROLE-NAME>, <ROLE>)``
22
23where ``<ROLE-NAME>`` is the name under which a role was registered
24with the ZCA (a string) and ``<ROLE>`` is the real role object.
25
26    >>> from waeup.kofa.permissions import get_all_roles
27    >>> get_all_roles()
28    <generator object...at 0x...>
29
30    >>> sorted(list(get_all_roles()))
31    [(u'waeup.DataCenterManager', <waeup.kofa.permissions.DataCenterManager object at 0x...]
32
33:func:`get_waeup_roles`
34-----------------------
35
36Gives us all roles, except the Kofa specific roles. We can get a list
37with or without local roles:
38
39    >>> from waeup.kofa.permissions import get_waeup_roles
40    >>> len(list(get_waeup_roles()))
41    9
42
43    >>> len(list(get_waeup_roles(also_local=True)))
44    10
45
46
47:func:`get_waeup_role_names`
48----------------------------
49
50We can get all role names defined in Kofa (except 'local'
51roles that are meant not to be assigned globally):
52
53    >>> from waeup.kofa.permissions import get_waeup_role_names
54    >>> list(get_waeup_role_names())
55    [u'waeup.DataCenterManager',
56    u'waeup.ExportManager',
57    u'waeup.ImportManager',
58    u'waeup.PortalManager',
59    u'waeup.ProductsManager',
60    u'waeup.ProductsOfficer',
61    u'waeup.UsersManager',
62    u'waeup.WorkflowManager',
63    u'waeup.xmlrpcusers1']
64
65:func:`get_users_with_local_roles`
66----------------------------------
67
68We can get all users and their roles for a certain context
69object. This even works for objects that cannot have local roles as
70they are not stored in the ZODB:
71
72    >>> from waeup.kofa.permissions import get_users_with_local_roles
73    >>> mycontext = object()
74    >>> people_and_roles = get_users_with_local_roles(mycontext)
75    >>> people_and_roles
76    <generator object...at 0x...>
77
78In this case, the result is empty:
79
80    >>> people_and_roles = list(people_and_roles)
81    >>> people_and_roles
82    []
83
84:func:`get_users_with_role`
85---------------------------
86
87We can get all users with a specific role for a certain context
88object:
89
90    >>> from waeup.kofa.permissions import get_users_with_role
91    >>> mycontext = object()
92    >>> people = get_users_with_role('waeup.portalManager', mycontext)
93    >>> people
94    <generator object...at 0x...>
95
96In this case, the result is empty:
97
98    >>> people = list(people)
99    >>> people
100    []
Note: See TracBrowser for help on using the repository browser.