Provides a pluggable users and groups architecture for the Horae resource planning system
Project description
Introduction
The horae.auth package provides a pluggable users and groups architecture for the Horae resource planning system and includes the following functionality:
Provides an authenticator and session credentials plugin using zope.pluggableauth
Defines default roles and permissions for Horae
Defines generic interfaces for users and groups and hooks for additional packages to provide them
Provides basic login and logout views based on horae.layout
Sharing
Authenticator and session credentials plugin
Both plugins are defined in horae.auth.auth and setup by the horae.auth.auth.setup_authentication function. To use the plugins they have to be registered with the grok application which the following example illustrates:
import grok from zope.app.authentication.authentication import ( PluggableAuthentication) from zope.app.security.interfaces import IAuthentication from horae.auth import auth class SampleApplication(grok.Application): grok.local_utility(PluggableAuthentication, provides=IAuthentication, setup=auth.setup_authentication)
Roles and permissions
The following default permissions are defined by horae.auth:
- View
Permission required to view an object
- Edit
Permission required to edit an object
- Delete
Permission required to delete an object
- ViewHistory
Permission required to view the history of an object
- AddClient
Permission required to add a client
- AddProject
Permission required to add a project
- AddMilestone
Permission required to add a milestone
- AddTicket
Permission required to add a ticket
- ChangeTicket
Permission required to change a ticket
- ViewHiddenProperties
Permission required to view hidden properties
- Manage
Management permission
- ManageGroups
Permission required to manage groups
- ManageUsers
Permission required to manage users
- Sharing
Permission required to share objects
Based on those permissions the following roles are defined:
- Manager
View, Edit, Delete, ViewHistory, AddClient, AddProject, AddMilestone, AddTicket, ChangeTicket, ViewHiddenProperties, Manage, ManageGroups, ManageUsers, Sharing
- Administrator
View, Edit, Delete, ViewHistory, AddClient, AddProject, AddMilestone, AddTicket, ChangeTicket, ViewHiddenProperties, ManageUsers, Sharing
- Owner
View, Edit, Manage
- Member
Assigned to every user
- Reader
View, ViewHistory
- Editor
View, Edit, ViewHistory, ChangeTicket
- Contributor
View, Edit, Delete, AddClient, AddProject, AddMilestone, AddTicket, ViewHistory, ChangeTicket
- TicketEditor
View, AddTicket, ViewHistory, ChangeTicket
- Responsible
View, Edit, ViewHistory, ChangeTicket
Generic interfaces and hooks
The main interfaces defined by horae.auth are:
horae.auth.interfaces.IUser
horae.auth.interfaces.IGroup
horae.auth.interfaces.IUserProvider
horae.auth.interfaces.IGroupProvider
horae.auth does not provide any implementation of those interfaces which is done by packages like horae.usersandgroups. This architecture makes it possible to quite easily plug in new user and group sources such as LDAP [1].
As mentioned above a sample implementation may be found in the package horae.usersandgroups which provides persistent users and groups and basic CRUD [2] functionality.
Dependencies
Horae
Third party
Changelog
1.0a1 (2012-01-16)
Initial release
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.