"Fossies" - the Fresh Open Source Software Archive

Member "senlin-8.0.0/senlin/common/policy.py" (16 Oct 2019, 1652 Bytes) of package /linux/misc/openstack/senlin-8.0.0.tar.gz:


As a special service "Fossies" has tried to format the requested source page into HTML format using (guessed) Python source code syntax highlighting (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file. For more information about "policy.py" see the Fossies "Dox" file reference documentation and the last Fossies "Diffs" side-by-side code changes report: 4.0.0_vs_6.0.0.

    1 # Licensed under the Apache License, Version 2.0 (the "License"); you may
    2 # not use this file except in compliance with the License. You may obtain
    3 # a copy of the License at
    4 #
    5 #         http://www.apache.org/licenses/LICENSE-2.0
    6 #
    7 # Unless required by applicable law or agreed to in writing, software
    8 # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
    9 # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
   10 # License for the specific language governing permissions and limitations
   11 # under the License.
   12 
   13 """
   14 Policy Engine For Senlin
   15 """
   16 
   17 # from oslo_concurrency import lockutils
   18 from oslo_config import cfg
   19 from oslo_policy import policy
   20 
   21 from senlin.common import exception
   22 from senlin.common import policies
   23 
   24 POLICY_ENFORCER = None
   25 CONF = cfg.CONF
   26 
   27 
   28 # @lockutils.synchronized('policy_enforcer', 'senlin-')
   29 def _get_enforcer(policy_file=None, rules=None, default_rule=None):
   30 
   31     global POLICY_ENFORCER
   32 
   33     if POLICY_ENFORCER is None:
   34         POLICY_ENFORCER = policy.Enforcer(CONF,
   35                                           policy_file=policy_file,
   36                                           rules=rules,
   37                                           default_rule=default_rule)
   38         POLICY_ENFORCER.register_defaults(policies.list_rules())
   39     return POLICY_ENFORCER
   40 
   41 
   42 def enforce(context, rule, target, do_raise=True, *args, **kwargs):
   43 
   44     enforcer = _get_enforcer()
   45     credentials = context.to_dict()
   46     target = target or {}
   47     if do_raise:
   48         kwargs.update(exc=exception.Forbidden)
   49 
   50     return enforcer.enforce(rule, target, credentials, do_raise,
   51                             *args, **kwargs)