Add support for magic "admin" ACL that is only satisfied by appengine administrators.

2014-06-08 23:41:23 -07:00
parent 44ede2abbf
commit d2e7b76df9
2 changed files with 90 additions and 6 deletions
--- a/lib/models.py
+++ b/lib/models.py
@@ -19,6 +19,7 @@ import logging
 import struct

 from google.appengine.api import channel
+from google.appengine.api import users
 from google.appengine.ext import db

 import utils
@@ -49,6 +50,8 @@ class Profile(db.Model):

  _cache = {}

+  ADMIN_KEY = db.Key.from_path('Profile', 'admin')
+
  @classmethod
  @db.transactional()
  def FindOrCreate(cls, google_user):
@@ -125,12 +128,18 @@ class Subject(db.Model):
  @classmethod
  def FindOrCreate(cls, subject):
    if 'readable_only_by' in subject:
-      readable_only_by = db.Key(subject['readable_only_by'])
+      if subject['readable_only_by'] == 'admin':
+        readable_only_by = Profile.ADMIN_KEY
+      else:
+        readable_only_by = db.Key(subject['readable_only_by'])
    else:
      readable_only_by = None

    if 'writable_only_by' in subject:
-      writable_only_by = db.Key(subject['writable_only_by'])
+      if subject['writable_only_by'] == 'admin':
+        writable_only_by = Profile.ADMIN_KEY
+      else:
+        writable_only_by = db.Key(subject['writable_only_by'])
    else:
      writable_only_by = None

@@ -213,13 +222,15 @@ class Subject(db.Model):

  def VerifyWritable(self, sender):
    writable_only_by = Subject.writable_only_by.get_value_for_datastore(self)
-    if (writable_only_by and
+    if (not users.is_current_user_admin() and
+        writable_only_by and
        writable_only_by != sender):
      raise AccessDenied

  def VerifyReadable(self, reader):
    readable_only_by = Subject.readable_only_by.get_value_for_datastore(self)
-    if (readable_only_by and
+    if (not users.is_current_user_admin() and
+        readable_only_by and
        readable_only_by != reader):
      raise AccessDenied

@@ -294,10 +305,16 @@ class Subject(db.Model):
    }
    readable_only_by = Subject.readable_only_by.get_value_for_datastore(self)
    if readable_only_by:
-      ret['readable_only_by'] = str(readable_only_by)
+      if readable_only_by == Profile.ADMIN_KEY:
+        ret['readable_only_by'] = 'admin'
+      else:
+        ret['readable_only_by'] = str(readable_only_by)
    writable_only_by = Subject.writable_only_by.get_value_for_datastore(self)
    if writable_only_by:
-      ret['writable_only_by'] = str(writable_only_by)
+      if writable_only_by == Profile.ADMIN_KEY:
+        ret['writable_only_by'] = 'admin'
+      else:
+        ret['writable_only_by'] = str(writable_only_by)
    return ret

  @db.transactional()