0001-api-extend-api-users-value-to-also-look-within-name-.patch

Frédéric Péters, 16 novembre 2015 14:16

Voir les différences: en ligne côte à côte

Subject: [PATCH] api: extend /api/users/{value}/ to also look within name
 identifiers (#8994)

 tests/test_api.py |  8 ++++++++
 wcs/api.py        | 11 ++++++++++-
 wcs/sql.py        |  6 ++++++
 3 files changed, 24 insertions(+), 1 deletion(-)

         assert [x.get('id') for x in resp.json['roles']['concerned']] == [str(role.id), str(another_role.id)]
         assert [x.get('id') for x in resp.json['roles']['actions']] == [str(role.id)]
     def test_user_by_nameid(pub, local_user):
         resp = get_app(pub).get(sign_uri('/api/users/xyz/', user=local_user),
                 status=404)
         local_user.name_identifiers = ['xyz']
         local_user.store()
         resp = get_app(pub).get(sign_uri('/api/users/xyz/', user=local_user))
         assert str(resp.json['id']) == str(local_user.id)
     def test_user_forms(pub, local_user):
         FormDef.wipe()
         formdef = FormDef()

                 raise AccessForbiddenError('no user specified')
             user_info = user.get_substitution_variables(prefix='')
             del user_info['user']
             user_info['id'] = user.id
             user_info['user_roles'] = [
                     Role.get(x).get_json_export_dict() for x in user.roles or []]
             return json.dumps(user_info)
-...
             if not (is_url_signed() or (
                     get_request().user and get_request().user.can_go_in_admin())):
                 raise AccessForbiddenError()
             return ApiUserDirectory(get_publisher().user_class.get(component))
             user_class = get_publisher().user_class
             try:
                 user = user_class.get(component)
             except KeyError:
                 try:
                     user = user_class.get_users_with_name_identifier(component)[0]
                 except IndexError:
                     raise TraversalError()
             return ApiUserDirectory(user)
     class ApiDirectory(Directory):

                     return None
                 else:
                     raise KeyError()
             try:
                 # id in SQL are always integers, don't even look in the
                 # database if asked for something else.
                 int(id)
             except ValueError:
                 raise KeyError()
             conn, cur = get_connection_and_cursor()
             sql_statement = '''SELECT %s
+    -

Produits Entr'ouvert » w.c.s.