发表新帖
发表新帖

Writing a CherryPy Decorator for Authorization

后端 未结
关注
2 1148
清歌不尽
清歌不尽 2021-02-09 15:30

I have a cherrypy application and on some of the views I want to start only allowing certain users to view them, and sending anyone else to an authorization required page.

相关标签:
2条回答
  • 日久生厌
    2021-02-09 15:48

    You really don't want to be writing custom decorators for CherryPy. Instead, you want to write a new Tool:

    def myauth(allowed_groups=None, debug=False):
    # Do your auth here...
    authlib.auth(...)
cherrypy.tools.myauth = cherrypy.Tool("on_start_resource", myauth)

    See http://docs.cherrypy.org/en/latest/extend.html#tools for more discussion. This has several benefits over writing a custom decorator:

    1. You get the decorator for free from the Tool: @cherrypy.tools.myauth(allowed_groups=['me']), and it already knows how to not clobber cherrypy.exposed on the same function.
    2. You can apply Tools either per-handler (with the decorator), per-controller-tree (via _cp_config) or per-URI-tree (in config files or dicts). You can even mix them and provide a base feature via decorators and then override their behavior in config files.
    3. If a config file turns your feature off, you don't pay the performance penalty of calling the decorator function just to see if it's off.
    4. You'll remember to add a 'debug' arg like all the builtin Tools have. ;)
    5. Your feature can run earlier (or later, if that's what you need) than a custom decorator can, by selecting a different "point".
    6. Your feature can run at multiple hook points, if needed.
    0 讨论(0)
  • 情话喂你
    2021-02-09 15:58

    Ok, in that case your decorator would look something like this:

    # without any parameters
def authentication_required(f):
    @functools.wraps(f)
    def _authentication_required(*args, **kwargs):
        # Do you login stuff here
        return f(*args, **kwargs)
    return _authentication_required

# With parameters
def authentication_required(*allowed_groups):
    def _authentication_required(f):
        @functools.wraps(f)
        def __authentication_required(*args, **kwargs):
            # Do you login stuff here
            return f(*args, **kwargs)
        return __authentication_required
    return _authentication_required
    0 讨论(0)
 看不清?
提交回复
热议问题