Impose access controls for subscribe even without a channel open.
This commit is contained in:
Ian Gulliver
15
api.py
15
api.py
@@ -118,6 +118,15 @@ def Subscribe(google_user, client, instance_id, args):
|
|||||||
messages = args.get('messages', 0)
|
messages = args.get('messages', 0)
|
||||||
last_id = args.get('last_id', None)
|
last_id = args.get('last_id', None)
|
||||||
|
|
||||||
|
try:
|
||||||
|
subject.VerifyReadable(models.Client.profile.get_value_for_datastore(client))
|
||||||
|
except models.AccessDenied:
|
||||||
|
logging.warning('Subscribe access denied')
|
||||||
|
return {
|
||||||
|
'result': 'access_denied',
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
if not instance or not instance.active:
|
if not instance or not instance.active:
|
||||||
# Probably a race with the channel opening
|
# Probably a race with the channel opening
|
||||||
return {
|
return {
|
||||||
@@ -125,17 +134,11 @@ def Subscribe(google_user, client, instance_id, args):
|
|||||||
'events': subject.GetEvents(messages, last_id),
|
'events': subject.GetEvents(messages, last_id),
|
||||||
}
|
}
|
||||||
|
|
||||||
try:
|
|
||||||
return {
|
return {
|
||||||
'result': 'ok',
|
'result': 'ok',
|
||||||
'events': models.Subscription.FindOrCreate(
|
'events': models.Subscription.FindOrCreate(
|
||||||
subject, client, instance, messages, last_id),
|
subject, client, instance, messages, last_id),
|
||||||
}
|
}
|
||||||
except models.AccessDenied:
|
|
||||||
logging.warning('Subscribe access denied')
|
|
||||||
return {
|
|
||||||
'result': 'access_denied',
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
def Unpin(google_user, client, instance_id, args):
|
def Unpin(google_user, client, instance_id, args):
|
||||||
|
|||||||
@@ -223,6 +223,12 @@ class Subject(db.Model):
|
|||||||
writable_only_by != sender):
|
writable_only_by != sender):
|
||||||
raise AccessDenied
|
raise AccessDenied
|
||||||
|
|
||||||
|
def VerifyReadable(self, reader):
|
||||||
|
readable_only_by = Subject.readable_only_by.get_value_for_datastore(self)
|
||||||
|
if (readable_only_by and
|
||||||
|
readable_only_by != reader):
|
||||||
|
raise AccessDenied
|
||||||
|
|
||||||
def SendMessage(self, message, sender, sender_message_id):
|
def SendMessage(self, message, sender, sender_message_id):
|
||||||
self.VerifyWritable(sender)
|
self.VerifyWritable(sender)
|
||||||
obj, subscriptions = self.PutMessage(message, sender, sender_message_id)
|
obj, subscriptions = self.PutMessage(message, sender, sender_message_id)
|
||||||
@@ -315,12 +321,6 @@ class Subscription(db.Model):
|
|||||||
@classmethod
|
@classmethod
|
||||||
@db.transactional()
|
@db.transactional()
|
||||||
def FindOrCreate(cls, subject, client, instance, messages=0, last_id=None):
|
def FindOrCreate(cls, subject, client, instance, messages=0, last_id=None):
|
||||||
readable_only_by = (
|
|
||||||
Subject.readable_only_by.get_value_for_datastore(subject))
|
|
||||||
if (readable_only_by and
|
|
||||||
readable_only_by != Client.profile.get_value_for_datastore(client)):
|
|
||||||
raise AccessDenied
|
|
||||||
|
|
||||||
subscriptions = (
|
subscriptions = (
|
||||||
cls.all(keys_only=True)
|
cls.all(keys_only=True)
|
||||||
.ancestor(subject)
|
.ancestor(subject)
|
||||||
|
|||||||
Reference in New Issue
Block a user