Security Interface API

Interfaces

class security_interface.AuthorizationPolicyInterface

Bases: object

can(identity, permission)

Check user permissions.

Returns:Return True if the identity is allowed the permission, else return False.
class security_interface.IdentityPolicyInterface

Bases: object

identify(identity)

Return the claimed identity of the user associated request or None if no identity can be found associated with the request.

Parameters:identity – Claim
Returns:Return checked identity or None if check is failed.

Main API

class security_interface.api.Security(identity_policy: security_interface.IdentityPolicyInterface, autz_policy: security_interface.AuthorizationPolicyInterface)

Bases: object

can(identity, permission) → bool

Check user permissions.

Returns:Return True if the identity is allowed the permission, else return False.
check_authorized(identity)

Work like Security.identity() but when check is failed raise UnauthorizedError() exception.

Parameters:identity – Claim
Returns:Checked claim or return None
Raise:UnauthorizedError()
check_permission(identity, permission)

Work like Security.can() but when check is failed raise ForbiddenError() exception.

Parameters:
  • identity – Claim
  • permission – Permission
Returns:

Checked claim
Raise:

ForbiddenError()
identify(identity)

Return the claimed identity of the user associated request or None if no identity can be found associated with the request.

Parameters:identity – Claim
Returns:Return checked identity or None if check is failed.
is_anonymous(identity) → bool
Parameters:identity – Claim
Returns:Return True if user anonymous otherwise False

Exceptions

exception security_interface.exceptions.ForbiddenError

Bases: Exception

exception security_interface.exceptions.UnauthorizedError

Bases: Exception