PyPI - commonground-api-common - Versions diffs - 1.13.2__py3-none-any.whl → 1.13.4__py3-none-any.whl - Mend

commonground-api-common 1.13.2py3-none-any.whl → 1.13.4py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

{commonground_api_common-1.13.2.dist-info → commonground_api_common-1.13.4.dist-info}/METADATA RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: commonground-api-common
-Version: 1.13.2
+Version: 1.13.4
 Summary: Commonground API tooling
 Home-page: https://github.com/maykinmedia/commonground-api-common
 Author: Maykin Media, VNG-Realisatie
@@ -17,50 +17,48 @@ Classifier: Operating System :: MacOS
 Classifier: Operating System :: Microsoft :: Windows
 Classifier: Programming Language :: Python :: 3
 Classifier: Programming Language :: Python :: 3 :: Only
-Classifier: Programming Language :: Python :: 3.8
-Classifier: Programming Language :: Python :: 3.9
 Classifier: Programming Language :: Python :: 3.10
 Classifier: Programming Language :: Python :: 3.11
 Classifier: Topic :: Software Development :: Libraries :: Python Modules
-Requires-Dist: django >=3.2.0
-Requires-Dist: django-filter >=2.0
+Requires-Dist: django>=3.2.0
+Requires-Dist: django-filter>=2.0
 Requires-Dist: django-solo
-Requires-Dist: djangorestframework >=3.11.0
-Requires-Dist: djangorestframework-camel-case >=1.2.0
+Requires-Dist: djangorestframework>=3.11.0
+Requires-Dist: djangorestframework-camel-case>=1.2.0
 Requires-Dist: django-rest-framework-condition
-Requires-Dist: drf-yasg >=1.20.0
-Requires-Dist: drf-nested-routers >=0.93.3
-Requires-Dist: gemma-zds-client >=0.14.0
+Requires-Dist: drf-yasg>=1.20.0
+Requires-Dist: drf-nested-routers>=0.93.3
+Requires-Dist: gemma-zds-client>=0.14.0
 Requires-Dist: iso-639
 Requires-Dist: isodate
-Requires-Dist: notifications-api-common >=0.2.2
+Requires-Dist: notifications-api-common>=0.2.2
 Requires-Dist: oyaml
-Requires-Dist: PyJWT >=2.0.0
+Requires-Dist: PyJWT>=2.0.0
 Requires-Dist: requests
 Requires-Dist: coreapi
 Provides-Extra: coverage
-Requires-Dist: pytest-cov ; extra == 'coverage'
+Requires-Dist: pytest-cov; extra == "coverage"
 Provides-Extra: docs
-Requires-Dist: psycopg2 ; extra == 'docs'
-Requires-Dist: sphinx ; extra == 'docs'
-Requires-Dist: sphinx-rtd-theme ; extra == 'docs'
+Requires-Dist: psycopg2; extra == "docs"
+Requires-Dist: sphinx; extra == "docs"
+Requires-Dist: sphinx-rtd-theme; extra == "docs"
 Provides-Extra: markdown_docs
-Requires-Dist: django-markup <=1.3 ; extra == 'markdown_docs'
-Requires-Dist: markdown ; extra == 'markdown_docs'
+Requires-Dist: django-markup<=1.3; extra == "markdown-docs"
+Requires-Dist: markdown; extra == "markdown-docs"
 Provides-Extra: pep8
-Requires-Dist: flake8 ; extra == 'pep8'
+Requires-Dist: flake8; extra == "pep8"
 Provides-Extra: release
-Requires-Dist: bump2version ; extra == 'release'
+Requires-Dist: bump2version; extra == "release"
 Provides-Extra: tests
-Requires-Dist: psycopg2 ; extra == 'tests'
-Requires-Dist: pytest ; extra == 'tests'
-Requires-Dist: pytest-django ; extra == 'tests'
-Requires-Dist: pytest-factoryboy ; extra == 'tests'
-Requires-Dist: tox ; extra == 'tests'
-Requires-Dist: isort ; extra == 'tests'
-Requires-Dist: black ; extra == 'tests'
-Requires-Dist: requests-mock ; extra == 'tests'
-Requires-Dist: freezegun ; extra == 'tests'
+Requires-Dist: psycopg2; extra == "tests"
+Requires-Dist: pytest; extra == "tests"
+Requires-Dist: pytest-django; extra == "tests"
+Requires-Dist: pytest-factoryboy; extra == "tests"
+Requires-Dist: tox; extra == "tests"
+Requires-Dist: isort; extra == "tests"
+Requires-Dist: black; extra == "tests"
+Requires-Dist: requests-mock; extra == "tests"
+Requires-Dist: freezegun; extra == "tests"
 ===================================================
 Commonground-API-common - Tooling voor RESTful APIs

{commonground_api_common-1.13.2.dist-info → commonground_api_common-1.13.4.dist-info}/RECORD RENAMED Viewed

@@ -1,7 +1,7 @@
-commonground_api_common-1.13.2.data/scripts/generate_schema,sha256=UKhznmbHX1zUjPx8G3XtxUPQiqnyd3TOIXs27Tnjl7U,952
-commonground_api_common-1.13.2.data/scripts/patch_content_types,sha256=dpGpYrZOZe8O5CHWd0F0QnP6Wk_7lK6DyuVZpBPr4mY,319
-commonground_api_common-1.13.2.data/scripts/use_external_components,sha256=xvvbngO2aDUagVXv4xRUqPaVtH_eOaVMWLQ8lyAPhEA,369
-vng_api_common/__init__.py,sha256=e1i4EXbzZ1xnh8stGo52300k0WTGVZuco7l8x2OgNso,23
+commonground_api_common-1.13.4.data/scripts/generate_schema,sha256=UKhznmbHX1zUjPx8G3XtxUPQiqnyd3TOIXs27Tnjl7U,952
+commonground_api_common-1.13.4.data/scripts/patch_content_types,sha256=dpGpYrZOZe8O5CHWd0F0QnP6Wk_7lK6DyuVZpBPr4mY,319
+commonground_api_common-1.13.4.data/scripts/use_external_components,sha256=xvvbngO2aDUagVXv4xRUqPaVtH_eOaVMWLQ8lyAPhEA,369
+vng_api_common/__init__.py,sha256=Gra4o8i--fyNCOTGnifCcG2dIC3_llV16Cw1aadiFd8,23
 vng_api_common/admin.py,sha256=oWKpUl5yjeYOIsh60ruCmBDyPURGq4ALle4zGhlUQsE,902
 vng_api_common/apps.py,sha256=wOQuxUImMpH39R0JrDdCZp5ADaUM8jU8vFPFW9froSs,3458
 vng_api_common/checks.py,sha256=tOyfV7MMLGh4anrd_W30LvJCxiyQ4sFs1mGd9mtrEc0,1175
@@ -19,10 +19,11 @@ vng_api_common/filters.py,sha256=77m9s3V6woMqE7uOQoqzit7w1AQpWcGqZozzQFdKAYs,568
 vng_api_common/filtersets.py,sha256=Ioarp5t_cz6Hf3iIcP2Rc0D7tGYhcMQPVdIJJ2dvtv8,867
 vng_api_common/generators.py,sha256=tD7ZyyFgCQ3KiktpBFtn5YiVdl3jioGxzyvkEZFYdQQ,4911
 vng_api_common/geo.py,sha256=AZbrw0rwGYOmaSUk8JJSkx-4_tVrfT_cgggh9omRwhU,1862
-vng_api_common/middleware.py,sha256=DhdGA_9_bk7bYr-keHEt4F_VS6IkYJmzzAhkjqnzeYw,8857
+vng_api_common/middleware.py,sha256=2DRw0hPpvUMqwoH1Ze8S7tDB16lmj4Bnd6vN5ijkGM8,875
 vng_api_common/mocks.py,sha256=JjpJyVmHReRUXbwDi2cnmuq4NYI1hLRr_W962TIhN6Y,6118
 vng_api_common/models.py,sha256=JmUfkM1PuiqW3wuTA-chMtcDGvohy4j0JsB95s7VK4Q,5041
 vng_api_common/oas.py,sha256=FiqBZ3n36q-fPRZEgpmLDxjnqmoAKmaTKZ-FlFcuRp0,2712
+vng_api_common/pagination.py,sha256=sI6VJ5AHDBhtNRQ8OFrD2heQK-NxaL_6n73ijiqWDLc,255
 vng_api_common/permissions.py,sha256=ayDxk9Wt8j0yO57FhZ8XaRkPET4lAqd8SSw3m4o3EGs,7562
 vng_api_common/polymorphism.py,sha256=N-x39pG2unD4N0ZbxFvuhE8ibPaJ0eKeqfvAJW3NnEU,6623
 vng_api_common/routers.py,sha256=Tq_V-ewibFfcMl-0TS91_jvel6SxQGF-649GSKqlexE,1906
@@ -75,6 +76,7 @@ vng_api_common/audittrails/migrations/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCe
 vng_api_common/audittrails/migrations/_operations.py,sha256=UOMv0zAK8CIQ73cSu6wwQG_hkW46Isdy7JCnljn8GII,3280
 vng_api_common/authorizations/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 vng_api_common/authorizations/admin.py,sha256=BmJQgNH7KlDB3flAXrSMm_w0NowpJrDYWDY61RZcKCI,795
+vng_api_common/authorizations/middleware.py,sha256=XcHXBvzGdVXSxDgiVaz6IAZQPS-pFsrJnCzepug1Ddw,8100
 vng_api_common/authorizations/models.py,sha256=ahwEMG5R6ILTlrnKo5TggYp52Z7dAJMk2QSZyZW8Qa0,4236
 vng_api_common/authorizations/serializers.py,sha256=3HeKWEqhI3UWwI8SttC4rEID-Epbk7SWsC-bEjolbaw,5151
 vng_api_common/authorizations/validators.py,sha256=u7fKm0QgGy8fiAeYmIEB9Gy-yIE9C-tC2ZpnNQBXPso,2816
@@ -187,7 +189,7 @@ vng_api_common/tests/auth.py,sha256=IKDWTEFv4Bign4F70-ibsFcnJqRxEJaXvqaPQJWa1xY,
 vng_api_common/tests/caching.py,sha256=zfIw5cRRvO9cekHZZKfRqZc8cx5IfJUYNmcH6cuIMg4,624
 vng_api_common/tests/schema.py,sha256=9LFgEXzcYGkHZtlpCiHNCWywR5lF7Pl0S43cwlwKDgQ,1954
 vng_api_common/tests/urls.py,sha256=PFrYzQbBC0TFPMEn3uPhcBG0IQs9JsEPqckicJT1UA4,2159
-commonground_api_common-1.13.2.dist-info/METADATA,sha256=suvblBi_2_joSevlo67TVW8tzQIEfvkiaPl2qC0Q1gM,6656
-commonground_api_common-1.13.2.dist-info/WHEEL,sha256=y4mX-SOX4fYIkonsAGA5N0Oy-8_gI4FXw5HNI1xqvWg,91
-commonground_api_common-1.13.2.dist-info/top_level.txt,sha256=vPismc83zPzWXTmlNCCwfDlFV9iygJYxNJW5iDjKTgw,15
-commonground_api_common-1.13.2.dist-info/RECORD,,
+commonground_api_common-1.13.4.dist-info/METADATA,sha256=Rvx7_yFH4rnQfECFINzFJxtkysviCExbotrYUUJ3yCc,6529
+commonground_api_common-1.13.4.dist-info/WHEEL,sha256=OVMc5UfuAQiSplgO0_WdW7vXVGAt9Hdd6qtN4HotdyA,91
+commonground_api_common-1.13.4.dist-info/top_level.txt,sha256=vPismc83zPzWXTmlNCCwfDlFV9iygJYxNJW5iDjKTgw,15
+commonground_api_common-1.13.4.dist-info/RECORD,,

{commonground_api_common-1.13.2.dist-info → commonground_api_common-1.13.4.dist-info}/WHEEL RENAMED Viewed

@@ -1,5 +1,5 @@
 Wheel-Version: 1.0
-Generator: setuptools (70.2.0)
+Generator: setuptools (75.2.0)
 Root-Is-Purelib: true
 Tag: py3-none-any

vng_api_common/__init__.py CHANGED Viewed

	@@ -1 +1 @@
1	- __version__ = "1.13.2"
1	+ __version__ = "1.13.4"

vng_api_common/authorizations/middleware.py ADDED Viewed

@@ -0,0 +1,235 @@
+import logging
+from typing import Any, Dict, Iterable, List, Optional
+from django.conf import settings
+from django.db import models, transaction
+from django.db.models import QuerySet
+from django.utils.translation import gettext as _
+import jwt
+from djangorestframework_camel_case.util import underscoreize
+from rest_framework.exceptions import PermissionDenied
+from zds_client.client import ClientError
+from vng_api_common.constants import VertrouwelijkheidsAanduiding
+from ..models import JWTSecret
+from ..utils import get_uuid_from_path
+from .models import Applicatie, AuthorizationsConfig, Autorisatie
+from .serializers import ApplicatieUuidSerializer
+logger = logging.getLogger(__name__)
+class JWTAuth:
+    def __init__(self, encoded: Optional[str] = None):
+        self.encoded = encoded
+    @property
+    def applicaties(self) -> Iterable[Applicatie]:
+        if self.client_id is None:
+            return []
+        applicaties = self._get_auth()
+        if not applicaties:
+            auth_data = self._request_auth()
+            applicaties = self._save_auth(auth_data)
+        return applicaties
+    @property
+    def autorisaties(self) -> models.QuerySet:
+        """
+        Retrieve all authorizations relevant to this component.
+        """
+        app_ids = [app.id for app in self.applicaties]
+        config = AuthorizationsConfig.get_solo()
+        return Autorisatie.objects.filter(
+            applicatie_id__in=app_ids, component=config.component
+        )
+    def _request_auth(self) -> list:
+        client = AuthorizationsConfig.get_client()
+        try:
+            response = client.list(
+                "applicatie", query_params={"clientIds": self.client_id}
+            )
+        except ClientError as exc:
+            response = exc.args[0]
+            # friendly debug - hint at where the problem is located
+            if response["status"] == 403 and response["code"] == "not_authenticated":
+                detail = _(
+                    "Component could not authenticate against the AC - "
+                    "authorizations could not be retrieved"
+                )
+                raise PermissionDenied(detail=detail, code="not_authenticated_for_ac")
+            logger.warn("Authorization component can't be accessed")
+            return []
+        return underscoreize(response["results"])
+    def _get_auth(self):
+        return Applicatie.objects.filter(client_ids__contains=[self.client_id])
+    @transaction.atomic
+    def _save_auth(self, auth_data):
+        applicaties = []
+        for applicatie_data in auth_data:
+            applicatie_serializer = ApplicatieUuidSerializer(data=applicatie_data)
+            uuid = get_uuid_from_path(applicatie_data["url"])
+            applicatie_data["uuid"] = uuid
+            applicatie_serializer.is_valid()
+            applicaties.append(applicatie_serializer.save())
+        return applicaties
+    @property
+    def payload(self) -> Optional[Dict[str, Any]]:
+        if self.encoded is None:
+            return None
+        if not hasattr(self, "_payload"):
+            # decode the JWT and validate it
+            # jwt check
+            try:
+                payload = jwt.decode(
+                    self.encoded,
+                    algorithms=["HS256"],
+                    options={"verify_signature": False},
+                    leeway=settings.JWT_LEEWAY,
+                )
+            except jwt.DecodeError:
+                logger.info("Invalid JWT encountered")
+                raise PermissionDenied(
+                    _(
+                        "JWT could not be decoded. Possibly you made a copy-paste mistake."
+                    ),
+                    code="jwt-decode-error",
+                )
+            # get client_id
+            try:
+                client_id = payload["client_id"]
+            except KeyError:
+                raise PermissionDenied(
+                    "Client identifier is niet aanwezig in JWT",
+                    code="missing-client-identifier",
+                )
+            # find client_id in DB and retrieve its secret
+            try:
+                jwt_secret = JWTSecret.objects.exclude(secret="").get(
+                    identifier=client_id
+                )
+            except JWTSecret.DoesNotExist:
+                raise PermissionDenied(
+                    "Client identifier bestaat niet", code="invalid-client-identifier"
+                )
+            else:
+                key = jwt_secret.secret
+            # check signature of the token
+            try:
+                payload = jwt.decode(
+                    self.encoded,
+                    key,
+                    algorithms=["HS256"],
+                    leeway=settings.JWT_LEEWAY,
+                )
+            except jwt.InvalidSignatureError:
+                logger.exception("Invalid signature - possible payload tampering?")
+                raise PermissionDenied(
+                    "Client credentials zijn niet geldig", code="invalid-jwt-signature"
+                )
+            self._payload = payload
+        return self._payload
+    @property
+    def client_id(self) -> Optional[str]:
+        if not self.payload:
+            return None
+        return self.payload["client_id"]
+    def filter_vertrouwelijkheidaanduiding(self, base: QuerySet, value) -> QuerySet:
+        if value is None:
+            return base
+        order_provided = VertrouwelijkheidsAanduiding.get_choice_order(value)
+        order_case = VertrouwelijkheidsAanduiding.get_order_expression(
+            "max_vertrouwelijkheidaanduiding"
+        )
+        # In this case we are filtering Autorisatie model to look for auth which meets our needs.
+        # Therefore we're only considering authorizations here that have a max_vertrouwelijkheidaanduiding
+        # bigger or equal than what we're checking for the object.
+        # In cases when we are filtering data objects (Zaak, InformatieObject etc) it's the other way around
+        return base.annotate(max_vertr=order_case).filter(max_vertr__gte=order_provided)
+    def filter_default(self, base: QuerySet, name, value) -> QuerySet:
+        if value is None:
+            return base
+        return base.filter(**{name: value})
+    def has_auth(
+        self, scopes: List[str], component: Optional[str] = None, **fields
+    ) -> bool:
+        if scopes is None:
+            return False
+        scopes_provided = set()
+        config = AuthorizationsConfig.get_solo()
+        if component is None:
+            component = config.component
+        for applicatie in self.applicaties:
+            # allow everything
+            if applicatie.heeft_alle_autorisaties is True:
+                return True
+            autorisaties = applicatie.autorisaties.filter(component=component)
+            # filter on all additional components
+            for field_name, field_value in fields.items():
+                if hasattr(self, f"filter_{field_name}"):
+                    autorisaties = getattr(self, f"filter_{field_name}")(
+                        autorisaties, field_value
+                    )
+                else:
+                    autorisaties = self.filter_default(
+                        autorisaties, field_name, field_value
+                    )
+            for autorisatie in autorisaties:
+                scopes_provided.update(autorisatie.scopes)
+        return scopes.is_contained_in(list(scopes_provided))
+class AuthMiddleware:
+    header = "HTTP_AUTHORIZATION"
+    auth_type = "Bearer"
+    def __init__(self, get_response=None):
+        self.get_response = get_response
+    def __call__(self, request):
+        self.extract_jwt_payload(request)
+        return self.get_response(request) if self.get_response else None
+    def extract_jwt_payload(self, request):
+        authorization = request.META.get(self.header, "")
+        prefix = f"{self.auth_type} "
+        if authorization.startswith(prefix):
+            # grab the actual token
+            encoded = authorization[len(prefix) :]
+        else:
+            encoded = None
+        request.jwt_auth = JWTAuth(encoded)

vng_api_common/middleware.py CHANGED Viewed

@@ -1,242 +1,16 @@
 # https://pyjwt.readthedocs.io/en/latest/usage.html#reading-headers-without-validation
 # -> we can put the organization/service in the headers itself
 import logging
-from typing import Any, Dict, Iterable, List, Optional
 from django.conf import settings
-from django.db import models, transaction
-from django.db.models import QuerySet
-from django.utils.translation import gettext as _
-import jwt
-from djangorestframework_camel_case.util import underscoreize
-from rest_framework.exceptions import PermissionDenied
 from rest_framework.response import Response
-from zds_client.client import ClientError
-from .authorizations.models import Applicatie, AuthorizationsConfig, Autorisatie
-from .authorizations.serializers import ApplicatieUuidSerializer
-from .constants import VERSION_HEADER, VertrouwelijkheidsAanduiding
-from .models import JWTSecret
-from .utils import get_uuid_from_path
+from .constants import VERSION_HEADER
 logger = logging.getLogger(__name__)
-class JWTAuth:
-    def __init__(self, encoded: str = None):
-        self.encoded = encoded
-    @property
-    def applicaties(self) -> Iterable[Applicatie]:
-        if self.client_id is None:
-            return []
-        applicaties = self._get_auth()
-        if not applicaties:
-            auth_data = self._request_auth()
-            applicaties = self._save_auth(auth_data)
-        return applicaties
-    @property
-    def autorisaties(self) -> models.QuerySet:
-        """
-        Retrieve all authorizations relevant to this component.
-        """
-        app_ids = [app.id for app in self.applicaties]
-        config = AuthorizationsConfig.get_solo()
-        return Autorisatie.objects.filter(
-            applicatie_id__in=app_ids, component=config.component
-        )
-    def _request_auth(self) -> list:
-        client = AuthorizationsConfig.get_client()
-        try:
-            response = client.list(
-                "applicatie", query_params={"clientIds": self.client_id}
-            )
-        except ClientError as exc:
-            response = exc.args[0]
-            # friendly debug - hint at where the problem is located
-            if response["status"] == 403 and response["code"] == "not_authenticated":
-                detail = _(
-                    "Component could not authenticate against the AC - "
-                    "authorizations could not be retrieved"
-                )
-                raise PermissionDenied(detail=detail, code="not_authenticated_for_ac")
-            logger.warn("Authorization component can't be accessed")
-            return []
-        return underscoreize(response["results"])
-    def _get_auth(self):
-        return Applicatie.objects.filter(client_ids__contains=[self.client_id])
-    @transaction.atomic
-    def _save_auth(self, auth_data):
-        applicaties = []
-        for applicatie_data in auth_data:
-            applicatie_serializer = ApplicatieUuidSerializer(data=applicatie_data)
-            uuid = get_uuid_from_path(applicatie_data["url"])
-            applicatie_data["uuid"] = uuid
-            applicatie_serializer.is_valid()
-            applicaties.append(applicatie_serializer.save())
-        return applicaties
-    @property
-    def payload(self) -> Optional[Dict[str, Any]]:
-        if self.encoded is None:
-            return None
-        if not hasattr(self, "_payload"):
-            # decode the JWT and validate it
-            # jwt check
-            try:
-                payload = jwt.decode(
-                    self.encoded,
-                    algorithms=["HS256"],
-                    options={"verify_signature": False},
-                    leeway=settings.JWT_LEEWAY,
-                )
-            except jwt.DecodeError:
-                logger.info("Invalid JWT encountered")
-                raise PermissionDenied(
-                    _(
-                        "JWT could not be decoded. Possibly you made a copy-paste mistake."
-                    ),
-                    code="jwt-decode-error",
-                )
-            # get client_id
-            try:
-                client_id = payload["client_id"]
-            except KeyError:
-                raise PermissionDenied(
-                    "Client identifier is niet aanwezig in JWT",
-                    code="missing-client-identifier",
-                )
-            # find client_id in DB and retrieve its secret
-            try:
-                jwt_secret = JWTSecret.objects.exclude(secret="").get(
-                    identifier=client_id
-                )
-            except JWTSecret.DoesNotExist:
-                raise PermissionDenied(
-                    "Client identifier bestaat niet", code="invalid-client-identifier"
-                )
-            else:
-                key = jwt_secret.secret
-            # check signature of the token
-            try:
-                payload = jwt.decode(
-                    self.encoded,
-                    key,
-                    algorithms=["HS256"],
-                    leeway=settings.JWT_LEEWAY,
-                )
-            except jwt.InvalidSignatureError:
-                logger.exception("Invalid signature - possible payload tampering?")
-                raise PermissionDenied(
-                    "Client credentials zijn niet geldig", code="invalid-jwt-signature"
-                )
-            self._payload = payload
-        return self._payload
-    @property
-    def client_id(self) -> str:
-        if not self.payload:
-            return None
-        return self.payload["client_id"]
-    def filter_vertrouwelijkheidaanduiding(self, base: QuerySet, value) -> QuerySet:
-        if value is None:
-            return base
-        order_provided = VertrouwelijkheidsAanduiding.get_choice_order(value)
-        order_case = VertrouwelijkheidsAanduiding.get_order_expression(
-            "max_vertrouwelijkheidaanduiding"
-        )
-        # In this case we are filtering Autorisatie model to look for auth which meets our needs.
-        # Therefore we're only considering authorizations here that have a max_vertrouwelijkheidaanduiding
-        # bigger or equal than what we're checking for the object.
-        # In cases when we are filtering data objects (Zaak, InformatieObject etc) it's the other way around
-        return base.annotate(max_vertr=order_case).filter(max_vertr__gte=order_provided)
-    def filter_default(self, base: QuerySet, name, value) -> QuerySet:
-        if value is None:
-            return base
-        return base.filter(**{name: value})
-    def has_auth(
-        self, scopes: List[str], component: Optional[str] = None, **fields
-    ) -> bool:
-        if scopes is None:
-            return False
-        scopes_provided = set()
-        config = AuthorizationsConfig.get_solo()
-        if component is None:
-            component = config.component
-        for applicatie in self.applicaties:
-            # allow everything
-            if applicatie.heeft_alle_autorisaties is True:
-                return True
-            autorisaties = applicatie.autorisaties.filter(component=component)
-            # filter on all additional components
-            for field_name, field_value in fields.items():
-                if hasattr(self, f"filter_{field_name}"):
-                    autorisaties = getattr(self, f"filter_{field_name}")(
-                        autorisaties, field_value
-                    )
-                else:
-                    autorisaties = self.filter_default(
-                        autorisaties, field_name, field_value
-                    )
-            for autorisatie in autorisaties:
-                scopes_provided.update(autorisatie.scopes)
-        return scopes.is_contained_in(list(scopes_provided))
-class AuthMiddleware:
-    header = "HTTP_AUTHORIZATION"
-    auth_type = "Bearer"
-    def __init__(self, get_response=None):
-        self.get_response = get_response
-    def __call__(self, request):
-        self.extract_jwt_payload(request)
-        return self.get_response(request) if self.get_response else None
-    def extract_jwt_payload(self, request):
-        authorization = request.META.get(self.header, "")
-        prefix = f"{self.auth_type} "
-        if authorization.startswith(prefix):
-            # grab the actual token
-            encoded = authorization[len(prefix) :]
-        else:
-            encoded = None
-        request.jwt_auth = JWTAuth(encoded)
 class APIVersionHeaderMiddleware:
     """
     Include a header specifying the API-version

vng_api_common/pagination.py ADDED Viewed

@@ -0,0 +1,10 @@
+from rest_framework.pagination import PageNumberPagination
+class DynamicPageSizeMixin:
+    page_size = 100
+    page_size_query_param = "pageSize"
+    max_page_size = 500
+class DynamicPageSizePagination(DynamicPageSizeMixin, PageNumberPagination): ...

{commonground_api_common-1.13.2.data → commonground_api_common-1.13.4.data}/scripts/generate_schema RENAMED Viewed

File without changes

{commonground_api_common-1.13.2.data → commonground_api_common-1.13.4.data}/scripts/patch_content_types RENAMED Viewed

File without changes

{commonground_api_common-1.13.2.data → commonground_api_common-1.13.4.data}/scripts/use_external_components RENAMED Viewed

File without changes

{commonground_api_common-1.13.2.dist-info → commonground_api_common-1.13.4.dist-info}/top_level.txt RENAMED Viewed

File without changes

commonground-api-common 1.13.2__py3-none-any.whl → 1.13.4__py3-none-any.whl

commonground-api-common 1.13.2py3-none-any.whl → 1.13.4py3-none-any.whl