maxwin aiohttp security

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for cxhjet from gravatar.com cxhjet

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License
  • Author: cxhjet
  • Tags maxwin , commonlib , security , check_auth , check_permission
Classifiers
Report project as malware

Project description

rst file editor

mw-aiohttp-security

maxwin 团队 aiohttp 框架下的 认证和确权

代码样例

> .app/__init__.py 生成app,初始化 auth和permission 类

from mw_aiohttp_security import Auth,Permission
import asyncio
import aioredis
from aiohttp import web

# 认证类
auth = Auth()
# 权限类
p = Permission('maxguideweb')

def make_app():
    async def make_redis_pool():
        redis_address = ('192.168.101.70', '6380')
        return await aioredis.create_redis_pool(redis_address, timeout=1)

    async def dispose_redis_pool(app):
        redis_pool.close()
        await redis_pool.wait_closed()

    loop = asyncio.get_event_loop()
    app = web.Application()

    redis_pool = loop.run_until_complete(make_redis_pool())

    auth.init_app(app,redis_pool)
    p.init_app(app)
    app.on_cleanup.append(dispose_redis_pool)
    # add router
    from .router import add_router
    add_router(app)
    return app

> ./app/handler.py ,检查认证:@auth.valid_login,检查有无权限: @p.check(‘fleet’,’delete’)

from . import auth,p
import time
from aiohttp import web
from aiohttp_session import get_session

# 检查是否授权
@auth.valid_login
async def handler(request):
    user = request['current_user']
    # 没有权限raise 403
    p.check_permission(user.uid, 'fleet', 'auth')
    text = 'Last visited: {}'.format(time.time())
    return web.Response(text=text)

# 检查是否有删除 fleet的权限
@p.check('fleet','delete')
async def say_hello(request):
    # 获取session,session中有包含user信息
    session = await get_session(request)
    # 获取当前用户 信息
    user = request['current_user']
    # 动态的检查权限
    if not p.has_permission(user.uid,'fleet','auth'):
        return web.Response(text='没有设定授权车队的权限')
    return web.Response(text='hello')

> ./app/router.py add router

from .handler import handler,say_hello

def add_router(app):
    app.router.add_get('/', handler)
    app.router.add_get('/hello',say_hello)
```

> .main.py run app
```python
from aiohttp import web
from app import make_app

web.run_app(make_app(),port=8899)

Changes

0.1.0(2018-10-30)

  • 增加readme

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for cxhjet from gravatar.com cxhjet

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License
  • Author: cxhjet
  • Tags maxwin , commonlib , security , check_auth , check_permission
Classifiers

Release history Release notifications | RSS feed

0.1.13

0.1.12

0.1.11

0.1.10

0.1.9

0.1.8

0.1.7

0.1.6

0.1.5

0.1.4

0.1.3

0.1.2

0.1.1

This version

0.1.0

0.0.8

0.0.7

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

mw-aiohttp-security-0.1.0.tar.gz (5.6 kB view details)

Uploaded Source

File details

Details for the file mw-aiohttp-security-0.1.0.tar.gz.

File metadata

  • Download URL: mw-aiohttp-security-0.1.0.tar.gz
  • Upload date:
  • Size: 5.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.12.1 pkginfo/1.4.2 requests/2.19.1 setuptools/28.8.0 requests-toolbelt/0.8.0 tqdm/4.26.0 CPython/3.6.4

File hashes

Hashes for mw-aiohttp-security-0.1.0.tar.gz
Algorithm Hash digest
SHA256 91e3fc264f64799d803850ff59444c04ac4fa32c2d3edd34eaad2f6ec36dad40
MD5 5aae310de2b52bafb3eaafb5ab06dfff
BLAKE2b-256 2c25fc6b6e87e7a535eafd0130806364f28e2c3ff55da5595704c9d96fdfeb70

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page