Summary

Add support for permissions specific to Local Sites.

Review Request #4880 — Created Nov. 3, 2013 and submitted Nov. 4, 2013, 6:42 p.m.

Information

Owner

chipx86

Repository

Review Board

Branch

release-1.7.x

Bugs

Depends On

Reviewers

Groups

reviewboard

People

Description

Add support for permissions specific to Local Sites.

Local Sites had no equivalent of our custom permissions, like
can_change_status or can_submit_as_another_user. It also didn't grant
these abilities to administrators of Local Sites.

Now, a LocalSiteProfile defines a permissions dictionary, which contains
all granted permissions for the user. Local Site administrators
automatically have all permissions for a Local Site.

To do this, we make use of an AuthBackend's ability to do custom
permission lookups. The main function for this, has_perm, can take a
parameter for the object permissions are being looked up on.

This parameter is unused by defaut and in fact not allowed on any
built-in backends. Django doesn't make any real use of it. The intent
appears to be to pass an object like a ReviewRequest to it, but there's
no real rules governing this.

For our usage, passing a LocalSite as the object will have it look up
that permission in the user's list of permissions for the LocalSite. All
callers must then do when checking permissions is to pass the LocalSite
(or None) when calling has_perm.

The 'perms' context variable for templates has also been replaced with a
version that will pass the LocalSite for these requests.

Testing Done

Unit tests pass.

Manually tested closing a review request and editing one as a user with
those permissions, and as an administrator.

Issues

Description	From	Last Updated
The commas in these two lines are unnecessary.	david	Nov. 4, 2013, 6:33 p.m.
I'm a little bit concerned that this isn't implemented for all the auth backends. Maybe we can put it in …	david	Nov. 4, 2013, 4:52 p.m.
I think if not isinstance(obj, LocalSite), we should return the parent class' implementation (get_all_permissions(user)) rather than asserting.	david	Nov. 4, 2013, 4:52 p.m.

Typo in your change description: "defaut"

reviewboard/accounts/backends.py (Diff revision 1)

The issue has been resolved. Show all issues

I'm a little bit concerned that this isn't implemented for all the auth backends. Maybe we can put it in a mixin?

chipx86 Nov. 3, 2013, 12:59 p.m.

We're fortunately good here. Django's auth system will loop through all auth backend (and StandardAuthBackend will always be in that list), and if any of them have a has_perm method, it'll use that. It'll always call ours, since nothing else implements one.

david Nov. 4, 2013, 3:27 p.m.
```
OK. Maybe comment that?
```
chipx86 Nov. 4, 2013, 3:42 p.m.
```
Sure.
```

reviewboard/accounts/backends.py (Diff revision 1)

The issue has been resolved. Show all issues

I think if not isinstance(obj, LocalSite), we should return the parent class' implementation (get_all_permissions(user)) rather than asserting.

chipx86 Nov. 3, 2013, 12:59 p.m.

The parent has_perm, while it talks an object parameter, will hard-code an empty result if passed one. There's no warning, meaning it could be confusing if we pass the wrong thing, as we'll just see has_perm return False. The assert is there to better catch cases where we're passing in something we didn't intend to pass.

david Nov. 4, 2013, 3:27 p.m.

I'm just worried that asserts will crash things. Can we log and fail closed?

chipx86 Nov. 4, 2013, 3:42 p.m.

I think we want them to crash. We need to see that this is happening, because it's technically not valid to call the parent functions with an object. If they're ever called with an object other than a LocalSite, there's a programming error somewhere we need to fix.

david Nov. 4, 2013, 3:49 p.m.
```
Very well.
```

Change Summary:


Added a docstring for StandardAuthBackend that explains how it deals with permissions and how it will always be a factor in all auth scenarios.
Changed the assertions to always log and to raise exceptions on DEBUG installs.

Diff:

Revision 2 (+446 -33)

Show changes

	reviewboard/accounts/backends.py
	reviewboard/accounts/models.py
	reviewboard/accounts/evolutions/__init__.py
	reviewboard/accounts/evolutions/localsiteprofile_permissions.py
	reviewboard/hostingsvcs/managers.py
	reviewboard/hostingsvcs/models.py
	reviewboard/reviews/models.py
	reviewboard/scmtools/managers.py
	4 more

Ship it!

```
Just one trivial comment.
```
reviewboard/accounts/backends.py (Diff revisions 1 - 2)
The issue has been resolved. Show all issues
```
The commas in these two lines are unnecessary.
```

Status:: Completed