PyPI - amsdal - Versions diffs - 0.4.13__cp311-cp311-manylinux2014_x86_64.manylinux_2_17_x86_64.whl - Mend

amsdal 0.4.13__cp311-cp311-manylinux2014_x86_64.manylinux_2_17_x86_64.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (269) hide show

amsdal/Third-Party Materials - AMSDAL Dependencies - License Notices.md +1334 -0
amsdal/__about__.py +4 -0
amsdal/__about__.pyi +1 -0
amsdal/__init__.py +23 -0
amsdal/__init__.pyi +9 -0
amsdal/__migrations__/0000_initial.py +217 -0
amsdal/__migrations__/0001_datetime_type.py +18 -0
amsdal/__migrations__/0002_fixture_order.py +44 -0
amsdal/__migrations__/0003_schema_type_in_class_meta.py +44 -0
amsdal/cloud/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/__init__.pyi +0 -0
amsdal/cloud/client.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/client.pyi +57 -0
amsdal/cloud/constants.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/constants.pyi +13 -0
amsdal/cloud/enums.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/enums.pyi +68 -0
amsdal/cloud/models/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/models/__init__.pyi +0 -0
amsdal/cloud/models/base.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/models/base.pyi +247 -0
amsdal/cloud/services/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/__init__.pyi +0 -0
amsdal/cloud/services/actions/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/__init__.pyi +0 -0
amsdal/cloud/services/actions/add_allowlist_ip.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/add_allowlist_ip.pyi +19 -0
amsdal/cloud/services/actions/add_basic_auth.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/add_basic_auth.pyi +21 -0
amsdal/cloud/services/actions/add_dependency.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/add_dependency.pyi +19 -0
amsdal/cloud/services/actions/add_secret.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/add_secret.pyi +20 -0
amsdal/cloud/services/actions/base.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/base.pyi +122 -0
amsdal/cloud/services/actions/create_deploy.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/create_deploy.pyi +41 -0
amsdal/cloud/services/actions/create_env.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/create_env.pyi +19 -0
amsdal/cloud/services/actions/create_session.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/create_session.pyi +17 -0
amsdal/cloud/services/actions/delete_allowlist_ip.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/delete_allowlist_ip.pyi +19 -0
amsdal/cloud/services/actions/delete_basic_auth.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/delete_basic_auth.pyi +20 -0
amsdal/cloud/services/actions/delete_dependency.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/delete_dependency.pyi +21 -0
amsdal/cloud/services/actions/delete_env.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/delete_env.pyi +21 -0
amsdal/cloud/services/actions/delete_secret.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/delete_secret.pyi +21 -0
amsdal/cloud/services/actions/destroy_deploy.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/destroy_deploy.pyi +18 -0
amsdal/cloud/services/actions/expose_db.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/expose_db.pyi +22 -0
amsdal/cloud/services/actions/get_basic_auth_credentials.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/get_basic_auth_credentials.pyi +21 -0
amsdal/cloud/services/actions/get_monitoring_info.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/get_monitoring_info.pyi +21 -0
amsdal/cloud/services/actions/list_dependencies.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/list_dependencies.pyi +21 -0
amsdal/cloud/services/actions/list_deploys.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/list_deploys.pyi +19 -0
amsdal/cloud/services/actions/list_envs.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/list_envs.pyi +20 -0
amsdal/cloud/services/actions/list_secrets.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/list_secrets.pyi +22 -0
amsdal/cloud/services/actions/manager.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/manager.pyi +278 -0
amsdal/cloud/services/actions/signup_action.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/signup_action.pyi +20 -0
amsdal/cloud/services/actions/update_deploy.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/actions/update_deploy.pyi +19 -0
amsdal/cloud/services/auth/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/auth/__init__.pyi +0 -0
amsdal/cloud/services/auth/base.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/auth/base.pyi +6 -0
amsdal/cloud/services/auth/credentials.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/auth/credentials.pyi +30 -0
amsdal/cloud/services/auth/manager.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/auth/manager.pyi +26 -0
amsdal/cloud/services/auth/signup_service.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/auth/signup_service.pyi +32 -0
amsdal/cloud/services/auth/token.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/cloud/services/auth/token.pyi +27 -0
amsdal/configs/__init__.py +0 -0
amsdal/configs/__init__.pyi +0 -0
amsdal/configs/constants.py +33 -0
amsdal/configs/constants.pyi +22 -0
amsdal/configs/main.py +258 -0
amsdal/configs/main.pyi +173 -0
amsdal/context/__init__.py +0 -0
amsdal/context/__init__.pyi +0 -0
amsdal/context/manager.py +69 -0
amsdal/context/manager.pyi +50 -0
amsdal/contrib/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/contrib/__init__.pyi +0 -0
amsdal/contrib/app_config.py +7 -0
amsdal/contrib/app_config.pyi +6 -0
amsdal/contrib/auth/__init__.py +0 -0
amsdal/contrib/auth/__init__.pyi +0 -0
amsdal/contrib/auth/app.py +27 -0
amsdal/contrib/auth/app.pyi +15 -0
amsdal/contrib/auth/decorators/__init__.py +35 -0
amsdal/contrib/auth/decorators/__init__.pyi +6 -0
amsdal/contrib/auth/errors.py +7 -0
amsdal/contrib/auth/errors.pyi +4 -0
amsdal/contrib/auth/fixtures/basic_permissions.json +64 -0
amsdal/contrib/auth/lifecycle/__init__.py +0 -0
amsdal/contrib/auth/lifecycle/__init__.pyi +0 -0
amsdal/contrib/auth/lifecycle/consumer.py +394 -0
amsdal/contrib/auth/lifecycle/consumer.pyi +108 -0
amsdal/contrib/auth/migrations/0000_initial.py +84 -0
amsdal/contrib/auth/models/__init__.py +0 -0
amsdal/contrib/auth/models/__init__.pyi +0 -0
amsdal/contrib/auth/models/login_session.py +118 -0
amsdal/contrib/auth/models/login_session.pyi +37 -0
amsdal/contrib/auth/models/permission.py +23 -0
amsdal/contrib/auth/models/permission.pyi +18 -0
amsdal/contrib/auth/models/user.py +106 -0
amsdal/contrib/auth/models/user.pyi +46 -0
amsdal/contrib/auth/settings.py +36 -0
amsdal/contrib/auth/settings.pyi +26 -0
amsdal/contrib/frontend_configs/__init__.py +0 -0
amsdal/contrib/frontend_configs/__init__.pyi +0 -0
amsdal/contrib/frontend_configs/app.py +24 -0
amsdal/contrib/frontend_configs/app.pyi +19 -0
amsdal/contrib/frontend_configs/constants.py +1 -0
amsdal/contrib/frontend_configs/constants.pyi +1 -0
amsdal/contrib/frontend_configs/conversion/__init__.py +5 -0
amsdal/contrib/frontend_configs/conversion/__init__.pyi +3 -0
amsdal/contrib/frontend_configs/conversion/convert.py +286 -0
amsdal/contrib/frontend_configs/conversion/convert.pyi +22 -0
amsdal/contrib/frontend_configs/lifecycle/__init__.py +0 -0
amsdal/contrib/frontend_configs/lifecycle/__init__.pyi +0 -0
amsdal/contrib/frontend_configs/lifecycle/consumer.py +306 -0
amsdal/contrib/frontend_configs/lifecycle/consumer.pyi +98 -0
amsdal/contrib/frontend_configs/migrations/0000_initial.py +256 -0
amsdal/contrib/frontend_configs/models/__init__.py +0 -0
amsdal/contrib/frontend_configs/models/__init__.pyi +0 -0
amsdal/contrib/frontend_configs/models/frontend_activator_config.py +22 -0
amsdal/contrib/frontend_configs/models/frontend_activator_config.pyi +12 -0
amsdal/contrib/frontend_configs/models/frontend_config_async_validator.py +11 -0
amsdal/contrib/frontend_configs/models/frontend_config_async_validator.pyi +7 -0
amsdal/contrib/frontend_configs/models/frontend_config_control_action.py +54 -0
amsdal/contrib/frontend_configs/models/frontend_config_control_action.pyi +32 -0
amsdal/contrib/frontend_configs/models/frontend_config_group_validator.py +21 -0
amsdal/contrib/frontend_configs/models/frontend_config_group_validator.pyi +11 -0
amsdal/contrib/frontend_configs/models/frontend_config_option.py +12 -0
amsdal/contrib/frontend_configs/models/frontend_config_option.pyi +8 -0
amsdal/contrib/frontend_configs/models/frontend_config_skip_none_base.py +17 -0
amsdal/contrib/frontend_configs/models/frontend_config_skip_none_base.pyi +8 -0
amsdal/contrib/frontend_configs/models/frontend_config_slider_option.py +13 -0
amsdal/contrib/frontend_configs/models/frontend_config_slider_option.pyi +9 -0
amsdal/contrib/frontend_configs/models/frontend_config_text_mask.py +14 -0
amsdal/contrib/frontend_configs/models/frontend_config_text_mask.pyi +10 -0
amsdal/contrib/frontend_configs/models/frontend_config_validator.py +28 -0
amsdal/contrib/frontend_configs/models/frontend_config_validator.pyi +15 -0
amsdal/contrib/frontend_configs/models/frontend_control_config.py +87 -0
amsdal/contrib/frontend_configs/models/frontend_control_config.pyi +35 -0
amsdal/contrib/frontend_configs/models/frontend_model_config.py +14 -0
amsdal/contrib/frontend_configs/models/frontend_model_config.pyi +9 -0
amsdal/contrib/frontend_configs/utils.py +29 -0
amsdal/contrib/frontend_configs/utils.pyi +17 -0
amsdal/errors.py +31 -0
amsdal/errors.pyi +12 -0
amsdal/fixtures/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/fixtures/__init__.pyi +0 -0
amsdal/fixtures/manager.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/fixtures/manager.pyi +170 -0
amsdal/fixtures/utils.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/fixtures/utils.pyi +9 -0
amsdal/manager.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/manager.pyi +265 -0
amsdal/mixins/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/mixins/__init__.pyi +0 -0
amsdal/mixins/class_versions_mixin.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/mixins/class_versions_mixin.pyi +12 -0
amsdal/models/__init__.py +19 -0
amsdal/models/__init__.pyi +9 -0
amsdal/models/core/__init__.py +0 -0
amsdal/models/core/__init__.pyi +0 -0
amsdal/models/core/class_object.py +37 -0
amsdal/models/core/class_object.pyi +24 -0
amsdal/models/core/class_object_meta.py +26 -0
amsdal/models/core/class_object_meta.pyi +15 -0
amsdal/models/core/class_property.py +20 -0
amsdal/models/core/class_property.pyi +11 -0
amsdal/models/core/class_property_meta.py +15 -0
amsdal/models/core/class_property_meta.pyi +10 -0
amsdal/models/core/file.py +156 -0
amsdal/models/core/file.pyi +104 -0
amsdal/models/core/fixture.py +25 -0
amsdal/models/core/fixture.pyi +14 -0
amsdal/models/core/option.py +11 -0
amsdal/models/core/option.pyi +8 -0
amsdal/models/core/validator.py +12 -0
amsdal/models/core/validator.pyi +8 -0
amsdal/models/types/__init__.py +0 -0
amsdal/models/types/__init__.pyi +0 -0
amsdal/models/types/object.py +26 -0
amsdal/models/types/object.pyi +16 -0
amsdal/py.typed +0 -0
amsdal/queryset/__init__.py +21 -0
amsdal/queryset/__init__.pyi +6 -0
amsdal/schemas/__init__.py +0 -0
amsdal/schemas/__init__.pyi +0 -0
amsdal/schemas/core/class_object/model.json +31 -0
amsdal/schemas/core/class_object/properties/display_name.py +9 -0
amsdal/schemas/core/class_object_meta/model.json +59 -0
amsdal/schemas/core/class_property/model.json +22 -0
amsdal/schemas/core/class_property_meta/model.json +23 -0
amsdal/schemas/core/file/hooks/pre_create.py +24 -0
amsdal/schemas/core/file/hooks/pre_update.py +24 -0
amsdal/schemas/core/file/model.json +23 -0
amsdal/schemas/core/file/properties/from_file.py +34 -0
amsdal/schemas/core/file/properties/mimetype.py +13 -0
amsdal/schemas/core/file/properties/str.py +6 -0
amsdal/schemas/core/file/properties/to_file.py +24 -0
amsdal/schemas/core/file/properties/validate_data.py +32 -0
amsdal/schemas/core/fixture/model.json +35 -0
amsdal/schemas/core/option/model.json +19 -0
amsdal/schemas/core/validator/model.json +19 -0
amsdal/schemas/interfaces.py +25 -0
amsdal/schemas/interfaces.pyi +20 -0
amsdal/schemas/manager.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/schemas/manager.py +0 -0
amsdal/schemas/manager.pyi +0 -0
amsdal/schemas/mixins/__init__.py +0 -0
amsdal/schemas/mixins/__init__.pyi +0 -0
amsdal/schemas/mixins/check_dependencies_mixin.py +125 -0
amsdal/schemas/mixins/check_dependencies_mixin.pyi +45 -0
amsdal/schemas/mixins/verify_schemas_mixin.py +96 -0
amsdal/schemas/mixins/verify_schemas_mixin.pyi +33 -0
amsdal/schemas/repository.py +84 -0
amsdal/schemas/repository.pyi +22 -0
amsdal/schemas/types/anything/model.json +7 -0
amsdal/schemas/types/array/model.json +7 -0
amsdal/schemas/types/binary/model.json +7 -0
amsdal/schemas/types/boolean/model.json +17 -0
amsdal/schemas/types/date/model.json +7 -0
amsdal/schemas/types/datetime/model.json +7 -0
amsdal/schemas/types/dictionary/model.json +8 -0
amsdal/schemas/types/number/model.json +8 -0
amsdal/schemas/types/object/model.json +53 -0
amsdal/schemas/types/string/model.json +8 -0
amsdal/schemas/utils.py +16 -0
amsdal/schemas/utils.pyi +10 -0
amsdal/services/__init__.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/services/__init__.pyi +0 -0
amsdal/services/transaction_execution.cpython-311-x86_64-linux-gnu.so +0 -0
amsdal/services/transaction_execution.pyi +93 -0
amsdal/transactions/__init__.py +13 -0
amsdal/transactions/__init__.pyi +4 -0
amsdal/utils/__init__.py +0 -0
amsdal/utils/__init__.pyi +0 -0
amsdal/utils/contrib_paths.py +23 -0
amsdal/utils/contrib_paths.pyi +14 -0
amsdal/utils/rollback/__init__.py +440 -0
amsdal/utils/rollback/__init__.pyi +38 -0
amsdal/utils/tests/__init__.py +0 -0
amsdal/utils/tests/enums.py +18 -0
amsdal/utils/tests/factories.py +49 -0
amsdal/utils/tests/helpers.py +499 -0
amsdal-0.4.13.dist-info/METADATA +369 -0
amsdal-0.4.13.dist-info/RECORD +269 -0
amsdal-0.4.13.dist-info/WHEEL +6 -0
amsdal-0.4.13.dist-info/licenses/LICENSE.txt +107 -0
amsdal-0.4.13.dist-info/top_level.txt +1 -0

amsdal/contrib/app_config.py ADDED Viewed

@@ -0,0 +1,7 @@
+from abc import ABC
+from abc import abstractmethod
+class AppConfig(ABC):
+    @abstractmethod
+    def on_ready(self) -> None: ...

amsdal/contrib/app_config.pyi ADDED Viewed

@@ -0,0 +1,6 @@
+import abc
+from abc import ABC, abstractmethod
+class AppConfig(ABC, metaclass=abc.ABCMeta):
+    @abstractmethod
+    def on_ready(self) -> None: ...

amsdal/contrib/auth/__init__.py ADDED Viewed

File without changes

amsdal/contrib/auth/__init__.pyi ADDED Viewed

File without changes

amsdal/contrib/auth/app.py ADDED Viewed

@@ -0,0 +1,27 @@
+from amsdal_utils.lifecycle.enum import LifecycleEvent
+from amsdal_utils.lifecycle.producer import LifecycleProducer
+from amsdal.contrib.app_config import AppConfig
+class AuthAppConfig(AppConfig):
+    """
+    Configuration class for the authentication application.
+    This class sets up the necessary listeners for various lifecycle events
+    related to authentication and permission checks.
+    """
+    def on_ready(self) -> None:
+        """
+        Sets up listeners for various lifecycle events.
+        This method adds listeners for server startup, user authentication, and permission checks.
+        """
+        from amsdal.contrib.auth.lifecycle.consumer import AuthenticateUserConsumer
+        from amsdal.contrib.auth.lifecycle.consumer import CheckAndCreateSuperUserConsumer
+        from amsdal.contrib.auth.lifecycle.consumer import CheckPermissionConsumer
+        LifecycleProducer.add_listener(LifecycleEvent.ON_SERVER_STARTUP, CheckAndCreateSuperUserConsumer)
+        LifecycleProducer.add_listener(LifecycleEvent.ON_AUTHENTICATE, AuthenticateUserConsumer)
+        LifecycleProducer.add_listener(LifecycleEvent.ON_PERMISSION_CHECK, CheckPermissionConsumer)

amsdal/contrib/auth/app.pyi ADDED Viewed

@@ -0,0 +1,15 @@
+from amsdal.contrib.app_config import AppConfig as AppConfig
+class AuthAppConfig(AppConfig):
+    """
+    Configuration class for the authentication application.
+    This class sets up the necessary listeners for various lifecycle events
+    related to authentication and permission checks.
+    """
+    def on_ready(self) -> None:
+        """
+        Sets up listeners for various lifecycle events.
+        This method adds listeners for server startup, user authentication, and permission checks.
+        """

amsdal/contrib/auth/decorators/__init__.py ADDED Viewed

@@ -0,0 +1,35 @@
+import asyncio
+from collections.abc import Callable
+from functools import wraps
+from typing import Any
+from amsdal.context.manager import AmsdalContextManager
+from amsdal.contrib.auth.errors import AuthenticationError
+def require_auth(func: Callable[..., Any]) -> Callable[..., Any]:
+    if asyncio.iscoroutinefunction(func):
+        @wraps(func)
+        async def wrapper(*args: Any, **kwargs: Any) -> Callable[..., Any]:
+            request = AmsdalContextManager().get_context().get('request', None)
+            if not request or not request.user:
+                msg = 'Authentication required'
+                raise AuthenticationError(msg)
+            return await func(*args, **kwargs)
+    else:
+        @wraps(func)
+        def wrapper(*args: Any, **kwargs: Any) -> Callable[..., Any]:
+            request = AmsdalContextManager().get_context().get('request', None)
+            if not request or not request.user:
+                msg = 'Authentication required'
+                raise AuthenticationError(msg)
+            return func(*args, **kwargs)
+    return wrapper

amsdal/contrib/auth/decorators/__init__.pyi ADDED Viewed

@@ -0,0 +1,6 @@
+from amsdal.context.manager import AmsdalContextManager as AmsdalContextManager
+from amsdal.contrib.auth.errors import AuthenticationError as AuthenticationError
+from collections.abc import Callable as Callable
+from typing import Any
+def require_auth(func: Callable[..., Any]) -> Callable[..., Any]: ...

amsdal/contrib/auth/errors.py ADDED Viewed

@@ -0,0 +1,7 @@
+from amsdal_utils.errors import AmsdalError
+class UserCreationError(AmsdalError): ...
+class AuthenticationError(AmsdalError): ...

amsdal/contrib/auth/errors.pyi ADDED Viewed

@@ -0,0 +1,4 @@
+from amsdal_utils.errors import AmsdalError
+class UserCreationError(AmsdalError): ...
+class AuthenticationError(AmsdalError): ...

amsdal/contrib/auth/fixtures/basic_permissions.json ADDED Viewed

@@ -0,0 +1,64 @@
+{
+    "Permission": [
+        {
+            "_external_id": "user_delete",
+            "model": "User",
+            "action": "delete"
+        },
+        {
+            "_external_id": "user_read",
+            "model": "User",
+            "action": "read"
+        },
+        {
+            "_external_id": "user_update",
+            "model": "User",
+            "action": "update"
+        },
+        {
+            "_external_id": "user_all_actions",
+            "model": "User",
+            "action": "*"
+        },
+        {
+            "_external_id": "all_models_all_actions",
+            "model": "*",
+            "action": "*"
+        },
+        {
+            "_external_id": "login_session_delete",
+            "model": "LoginSession",
+            "action": "delete"
+        },
+        {
+            "_external_id": "login_session_read",
+            "model": "LoginSession",
+            "action": "read"
+        },
+        {
+            "_external_id": "login_session_update",
+            "model": "LoginSession",
+            "action": "update"
+        },
+        {
+            "_external_id": "permission_delete",
+            "model": "Permission",
+            "action": "delete"
+        },
+        {
+            "_external_id": "permission_read",
+            "model": "Permission",
+            "action": "read"
+        },
+        {
+            "_external_id": "permission_update",
+            "model": "Permission",
+            "action": "update"
+        },
+        {
+            "_external_id": "permission_create",
+            "model": "Permission",
+            "action": "create"
+        }
+    ]
+}

amsdal/contrib/auth/lifecycle/__init__.py ADDED Viewed

File without changes

amsdal/contrib/auth/lifecycle/__init__.pyi ADDED Viewed

File without changes

amsdal/contrib/auth/lifecycle/consumer.py ADDED Viewed

@@ -0,0 +1,394 @@
+import logging
+from typing import Any
+import jwt
+from amsdal_data.transactions.decorators import async_transaction
+from amsdal_data.transactions.decorators import transaction
+from amsdal_models.classes.helpers.reference_loader import ReferenceLoader
+from amsdal_models.classes.model import Model
+from amsdal_utils.lifecycle.consumer import LifecycleConsumer
+from amsdal_utils.models.data_models.reference import Reference
+from amsdal_utils.models.enums import Versions
+from amsdal.contrib.auth.errors import AuthenticationError
+logger = logging.getLogger(__name__)
+class CheckAndCreateSuperUserConsumer(LifecycleConsumer):
+    """
+    Ensures the existence of a super user in the system.
+    This consumer checks if a super user exists based on the provided email and password
+    in the authentication settings. If the super user does not exist, it creates one.
+    """
+    @transaction
+    def on_event(self) -> None:
+        """
+        Checks for the existence of a super user and creates one if necessary.
+        This method ensures that a super user exists by checking the email and password
+        in the authentication settings. If the super user does not exist, it creates one
+        with the necessary permissions.
+        """
+        from amsdal.contrib.auth.models.permission import Permission
+        from amsdal.contrib.auth.models.user import User
+        from amsdal.contrib.auth.settings import auth_settings
+        logger.info('Ensure super user exists')
+        if not (auth_settings.ADMIN_USER_EMAIL and auth_settings.ADMIN_USER_PASSWORD):
+            logger.info('Email / password missing for super user - skipping')
+            return
+        user = (
+            User.objects.filter(email=auth_settings.ADMIN_USER_EMAIL, _address__object_version=Versions.LATEST)
+            .get_or_none()
+            .execute()
+        )
+        if user is not None:
+            logger.info('Super user already exists - skipping')
+            return
+        logger.info("Super user doesn't exist - creating now")
+        access_all_permission = (
+            Permission.objects.filter(
+                model='*',
+                action='*',
+                _address__object_version=Versions.LATEST,
+            )
+            .get()
+            .execute()
+        )
+        instance = User(
+            email=auth_settings.ADMIN_USER_EMAIL,
+            password=auth_settings.ADMIN_USER_PASSWORD.encode(),
+            permissions=[access_all_permission],
+        )
+        instance.save(force_insert=True)
+        logger.info('Super user created successfully')
+    @async_transaction
+    async def on_event_async(self) -> None:  # type: ignore[override]
+        """
+        Checks for the existence of a super user and creates one if necessary.
+        This method ensures that a super user exists by checking the email and password
+        in the authentication settings. If the super user does not exist, it creates one
+        with the necessary permissions.
+        """
+        from amsdal.contrib.auth.models.permission import Permission  # type: ignore[import-not-found]
+        from amsdal.contrib.auth.models.user import User  # type: ignore[import-not-found]
+        from amsdal.contrib.auth.settings import auth_settings
+        logger.info('Ensure super user exists')
+        if not (auth_settings.ADMIN_USER_EMAIL and auth_settings.ADMIN_USER_PASSWORD):
+            logger.info('Email / password missing for super user - skipping')
+            return
+        user = (
+            await User.objects.filter(email=auth_settings.ADMIN_USER_EMAIL, _address__object_version=Versions.LATEST)
+            .get_or_none()
+            .aexecute()
+        )
+        if user is not None:
+            logger.info('Super user already exists - skipping')
+            return
+        logger.info("Super user doesn't exist - creating now")
+        access_all_permission = (
+            await Permission.objects.filter(
+                model='*',
+                action='*',
+                _address__object_version=Versions.LATEST,
+            )
+            .get()
+            .aexecute()
+        )
+        instance = User(
+            email=auth_settings.ADMIN_USER_EMAIL,
+            password=auth_settings.ADMIN_USER_PASSWORD.encode(),
+            permissions=[access_all_permission],
+        )
+        await instance.asave(force_insert=True)  # type: ignore[misc]
+        logger.info('Super user created successfully')
+class AuthenticateUserConsumer(LifecycleConsumer):
+    """
+    Authenticates a user based on a provided JWT token.
+    This consumer decodes the JWT token from the authorization header and retrieves
+    the corresponding user from the database. If the token is invalid or expired,
+    it raises an `AuthenticationError`.
+    """
+    def on_event(self, auth_header: str, authentication_info: Any) -> None:
+        """
+        Authenticates the user using the provided JWT token.
+        This method decodes the JWT token from the authorization header and retrieves
+        the corresponding user from the database. If the token is invalid or expired,
+        it raises an `AuthenticationError`.
+        Args:
+            auth_header (str): The JWT token from the authorization header.
+            authentication_info (Any): The authentication information object to update with the user.
+        """
+        from amsdal.contrib.auth.models.user import User  # type: ignore[import-not-found]
+        from amsdal.contrib.auth.settings import auth_settings
+        authentication_info.user = None
+        email: str | None
+        try:
+            jwt_payload = jwt.decode(
+                auth_header,
+                auth_settings.AUTH_JWT_KEY,  # type: ignore[arg-type]
+                algorithms=['HS256'],
+            )
+            email = jwt_payload['email']
+        except jwt.ExpiredSignatureError as exc:
+            logger.error('Auth token expired. Defaulting to anonymous user.')
+            msg = 'Auth token has expired.'
+            raise AuthenticationError(msg) from exc
+        except Exception as exc:
+            logger.error('Auth token decode failure. Defaulting to anonymous user.')
+            msg = 'Failed to decode auth token.'
+            raise AuthenticationError(msg) from exc
+        user = User.objects.filter(email=email, _address__object_version=Versions.LATEST).get_or_none().execute()
+        authentication_info.user = user
+    async def on_event_async(self, auth_header: str, authentication_info: Any) -> None:
+        """
+        Authenticates the user using the provided JWT token.
+        This method decodes the JWT token from the authorization header and retrieves
+        the corresponding user from the database. If the token is invalid or expired,
+        it raises an `AuthenticationError`.
+        Args:
+            auth_header (str): The JWT token from the authorization header.
+            authentication_info (Any): The authentication information object to update with the user.
+        """
+        from amsdal.contrib.auth.models.user import User  # type: ignore[import-not-found]
+        from amsdal.contrib.auth.settings import auth_settings
+        authentication_info.user = None
+        email: str | None
+        try:
+            jwt_payload = jwt.decode(
+                auth_header,
+                auth_settings.AUTH_JWT_KEY,  # type: ignore[arg-type]
+                algorithms=['HS256'],
+            )
+            email = jwt_payload['email']
+        except jwt.ExpiredSignatureError as exc:
+            logger.error('Auth token expired. Defaulting to anonymous user.')
+            msg = 'Auth token has expired.'
+            raise AuthenticationError(msg) from exc
+        except Exception as exc:
+            logger.error('Auth token decode failure. Defaulting to anonymous user.')
+            msg = 'Failed to decode auth token.'
+            raise AuthenticationError(msg) from exc
+        user = await User.objects.filter(email=email, _address__object_version=Versions.LATEST).get_or_none().aexecute()
+        authentication_info.user = user
+class CheckPermissionConsumer(LifecycleConsumer):
+    """
+    Checks and manages permissions for a given user and object.
+    This consumer prepopulates default permissions, checks class-level permissions,
+    and object-level permissions for a given user and object.
+    """
+    def _prepopulate_default_permissions(self, object_class: type[Model], permissions_info: Any) -> None:
+        from amsdal.contrib.auth.models.permission import Permission
+        from amsdal.contrib.auth.settings import auth_settings
+        permissions_info.has_read_permission = not auth_settings.REQUIRE_DEFAULT_AUTHORIZATION
+        permissions_info.has_create_permission = (
+            (not auth_settings.REQUIRE_DEFAULT_AUTHORIZATION) if object_class.__name__ != 'LoginSession' else True
+        )
+        permissions_info.has_update_permission = not auth_settings.REQUIRE_DEFAULT_AUTHORIZATION
+        permissions_info.has_delete_permission = not auth_settings.REQUIRE_DEFAULT_AUTHORIZATION
+        required_permissions = Permission.objects.filter(
+            model=object_class.__name__,
+            _address__object_version=Versions.LATEST,
+        ).execute()
+        for required_permission in required_permissions:
+            if required_permission.action == 'read':
+                permissions_info.has_read_permission = False
+            elif required_permission.action == 'create':
+                permissions_info.has_create_permission = False
+            elif required_permission.action == 'update':
+                permissions_info.has_update_permission = False
+            elif required_permission.action == 'delete':
+                permissions_info.has_delete_permission = False
+    async def _async_prepopulate_default_permissions(self, object_class: type[Model], permissions_info: Any) -> None:
+        from amsdal.contrib.auth.models.permission import Permission  # type: ignore[import-not-found]
+        from amsdal.contrib.auth.settings import auth_settings
+        permissions_info.has_read_permission = not auth_settings.REQUIRE_DEFAULT_AUTHORIZATION
+        permissions_info.has_create_permission = (
+            (not auth_settings.REQUIRE_DEFAULT_AUTHORIZATION) if object_class.__name__ != 'LoginSession' else True
+        )
+        permissions_info.has_update_permission = not auth_settings.REQUIRE_DEFAULT_AUTHORIZATION
+        permissions_info.has_delete_permission = not auth_settings.REQUIRE_DEFAULT_AUTHORIZATION
+        required_permissions = await Permission.objects.filter(
+            model=object_class.__name__,
+            _address__object_version=Versions.LATEST,
+        ).aexecute()
+        for required_permission in required_permissions:
+            if required_permission.action == 'read':
+                permissions_info.has_read_permission = False
+            elif required_permission.action == 'create':
+                permissions_info.has_create_permission = False
+            elif required_permission.action == 'update':
+                permissions_info.has_update_permission = False
+            elif required_permission.action == 'delete':
+                permissions_info.has_delete_permission = False
+    def _check_class_permissions(self, object_class: type[Model], user: Any, permissions_info: Any) -> None:
+        if hasattr(object_class, 'has_permission'):
+            for action in ['read', 'create', 'update', 'delete']:
+                setattr(permissions_info, f'has_{action}_permission', object_class.has_permission(user, action))
+        if not user or not getattr(user, 'permissions', None):
+            return
+        user_permissions = [
+            ReferenceLoader(p).load_reference() if isinstance(p, Reference) else p for p in user.permissions
+        ]
+        for user_permission in user_permissions:
+            if user_permission.model not in [object_class.__name__, '*']:
+                continue
+            if user_permission.action == 'read':
+                permissions_info.has_read_permission = True
+            elif user_permission.action == 'create':
+                permissions_info.has_create_permission = True
+            elif user_permission.action == 'update':
+                permissions_info.has_update_permission = True
+            elif user_permission.action == 'delete':
+                permissions_info.has_delete_permission = True
+            elif user_permission.action == '*':
+                permissions_info.has_read_permission = True
+                permissions_info.has_create_permission = True
+                permissions_info.has_update_permission = True
+                permissions_info.has_delete_permission = True
+    async def _async_check_class_permissions(self, object_class: type[Model], user: Any, permissions_info: Any) -> None:
+        if hasattr(object_class, 'has_permission'):
+            for action in ['read', 'create', 'update', 'delete']:
+                setattr(permissions_info, f'has_{action}_permission', object_class.has_permission(user, action))
+        if not user or not getattr(user, 'permissions', None):
+            return
+        user_permissions = [
+            await ReferenceLoader(p).aload_reference() if isinstance(p, Reference) else p for p in user.permissions
+        ]
+        for user_permission in user_permissions:
+            if user_permission.model not in [object_class.__name__, '*']:
+                continue
+            if user_permission.action == 'read':
+                permissions_info.has_read_permission = True
+            elif user_permission.action == 'create':
+                permissions_info.has_create_permission = True
+            elif user_permission.action == 'update':
+                permissions_info.has_update_permission = True
+            elif user_permission.action == 'delete':
+                permissions_info.has_delete_permission = True
+            elif user_permission.action == '*':
+                permissions_info.has_read_permission = True
+                permissions_info.has_create_permission = True
+                permissions_info.has_update_permission = True
+                permissions_info.has_delete_permission = True
+    def _check_object_permissions(self, obj: Model, user: Any, permissions_info: Any) -> None:
+        if hasattr(obj, 'has_object_permission'):
+            for action in ['read', 'update', 'delete']:
+                setattr(
+                    permissions_info,
+                    f'has_{action}_permission',
+                    getattr(permissions_info, f'has_{action}_permission') and obj.has_object_permission(user, action),
+                )
+    def on_event(
+        self,
+        object_class: type[Model],
+        user: Any,
+        access_types: list[Any],  # noqa: ARG002
+        permissions_info: Any,
+        obj: Model | None = None,
+    ) -> None:
+        """
+        Main method to check permissions for a given user and object.
+        This method prepopulates default permissions, checks class-level permissions,
+        and object-level permissions for the given user and object.
+        Args:
+            object_class (type[Model]): The class of the object to check permissions for.
+            user (Any): The user to check permissions for.
+            access_types (list[Any]): The list of access types to check.
+            permissions_info (Any): The permissions information object to update.
+            obj (Model | None): The object to check permissions for, if any.
+        """
+        self._prepopulate_default_permissions(object_class, permissions_info)
+        self._check_class_permissions(object_class, user, permissions_info)
+        if obj:
+            self._check_object_permissions(obj, user, permissions_info)
+    async def on_event_async(
+        self,
+        object_class: type[Model],
+        user: Any,
+        access_types: list[Any],  # noqa: ARG002
+        permissions_info: Any,
+        obj: Model | None = None,
+    ) -> None:
+        """
+        Main method to check permissions for a given user and object.
+        This method prepopulates default permissions, checks class-level permissions,
+        and object-level permissions for the given user and object.
+        Args:
+            object_class (type[Model]): The class of the object to check permissions for.
+            user (Any): The user to check permissions for.
+            access_types (list[Any]): The list of access types to check.
+            permissions_info (Any): The permissions information object to update.
+            obj (Model | None): The object to check permissions for, if any.
+        """
+        await self._async_prepopulate_default_permissions(object_class, permissions_info)
+        await self._async_check_class_permissions(object_class, user, permissions_info)
+        if obj:
+            self._check_object_permissions(obj, user, permissions_info)