Combining RoleNeed's with Flask Principal Combining RoleNeed's with Flask Principal flask flask

Combining RoleNeed's with Flask Principal


python permissions flask acl flask-principal

As it currently stands, needs of a combined permission are checked with an OR. Quoting from the documentation:

class flask_principal.Permission(*needs)
Represents needs, any of which must be present to access a resource

If you want an AND instead, simply sub-class the Permission class and override the allows method to check that intersection of the sets is the same as the needs of the permission in the first place:

class RequiresAll(Permission):    def allows(self, identity):        if not has_all(self.needs, identity.provides):            return False        if self.excludes and self.excludes.intersection(identity.provides):            return False        return Truedef has_all(needed=None, provided=None):    if needed is None:        return True    if provided is None:        provided = set()    shared = needed.intersection(provided)    return shared == needed

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last