29 lines
827 B
Python
29 lines
827 B
Python
"""Minimal permission helpers with '*' wildcard support (no DB expansion)."""
|
|
|
|
from collections.abc import Sequence
|
|
from fnmatch import fnmatchcase
|
|
|
|
from ..globals import db
|
|
from .tokens import session_key
|
|
|
|
__all__ = ["has_any", "has_all", "session_context"]
|
|
|
|
|
|
def _match(perms: set[str], patterns: Sequence[str]):
|
|
return (
|
|
any(fnmatchcase(p, pat) for p in perms) if "*" in pat else pat in perms
|
|
for pat in patterns
|
|
)
|
|
|
|
|
|
def has_any(ctx, patterns: Sequence[str]) -> bool:
|
|
return any(_match(ctx.role.permissions, patterns)) if ctx else False
|
|
|
|
|
|
def has_all(ctx, patterns: Sequence[str]) -> bool:
|
|
return all(_match(ctx.role.permissions, patterns)) if ctx else False
|
|
|
|
|
|
async def session_context(auth: str | None):
|
|
return await db.instance.get_session_context(session_key(auth)) if auth else None
|