cubicweb: comparison server/session.py

equal deleted inserted replaced

-:db80ffb2f71c
+:a75670ef2d87
 def __exit__(self, exctype, exc, traceback):
 self.session.reset_security(self.oldread, self.oldwrite)
 HOOKS_ALLOW_ALL = object()
 HOOKS_DENY_ALL = object()
+DEFAULT_SECURITY = object() # evaluated to true by design
 class Transaction(object):
 """Repository Transaction
 Holds all transaction related data
 objtype = self.repo.type_and_source_from_eid(eidto, self)[0]
 return self.vreg.schema.rschema(rtype).rdefs[(subjtype, objtype)]
 # security control #########################################################
-DEFAULT_SECURITY = object() # evaluated to true by design
 def security_enabled(self, read=None, write=None):
 return security_enabled(self, read=read, write=write)
 def init_security(self, read, write):
 @property
 def read_security(self):
 """return a boolean telling if read security is activated or not"""
 txstore = self._threaddata
 if txstore is None:
-return self.DEFAULT_SECURITY
+return DEFAULT_SECURITY
 try:
 return txstore.read_security
 except AttributeError:
-txstore.read_security = self.DEFAULT_SECURITY
+txstore.read_security = DEFAULT_SECURITY
 return txstore.read_security
 def set_read_security(self, activated):
 """[de]activate read security, returning the previous value set for
 later restoration.
 you should usually use the `security_enabled` context manager instead
 of this to change security settings.
 """
 txstore = self._threaddata
 if txstore is None:
-return self.DEFAULT_SECURITY
+return DEFAULT_SECURITY
-oldmode = getattr(txstore, 'read_security', self.DEFAULT_SECURITY)
+oldmode = getattr(txstore, 'read_security', DEFAULT_SECURITY)
 txstore.read_security = activated
 # dbapi_query used to detect hooks triggered by a 'dbapi' query (eg not
 # issued on the session). This is tricky since we the execution model of
 # a (write) user query is:
 #
 # so we can't rely on simply checking session.read_security, but
 # recalling the first transition from DEFAULT_SECURITY to something
 # else (False actually) is not perfect but should be enough
 #
 # also reset dbapi_query to true when we go back to DEFAULT_SECURITY
-txstore.dbapi_query = (oldmode is self.DEFAULT_SECURITY
+txstore.dbapi_query = (oldmode is DEFAULT_SECURITY
-or activated is self.DEFAULT_SECURITY)
+or activated is DEFAULT_SECURITY)
 return oldmode
 @property
 def write_security(self):
 """return a boolean telling if write security is activated or not"""
 txstore = self._threaddata
 if txstore is None:
-return self.DEFAULT_SECURITY
+return DEFAULT_SECURITY
 try:
 return txstore.write_security
 except AttributeError:
-txstore.write_security = self.DEFAULT_SECURITY
+txstore.write_security = DEFAULT_SECURITY
 return txstore.write_security
 def set_write_security(self, activated):
 """[de]activate write security, returning the previous value set for
 later restoration.
 you should usually use the `security_enabled` context manager instead
 of this to change security settings.
 """
 txstore = self._threaddata
 if txstore is None:
-return self.DEFAULT_SECURITY
+return DEFAULT_SECURITY
-oldmode = getattr(txstore, 'write_security', self.DEFAULT_SECURITY)
+oldmode = getattr(txstore, 'write_security', DEFAULT_SECURITY)
 txstore.write_security = activated
 return oldmode
 @property
 def running_dbapi_query(self):
 # only defining here to prevent pylint from complaining
 info = warning = error = critical = exception = debug = lambda msg,*a,**kw: None
 Session.HOOKS_ALLOW_ALL = HOOKS_ALLOW_ALL
 Session.HOOKS_DENY_ALL = HOOKS_DENY_ALL
+Session.DEFAULT_SECURITY = DEFAULT_SECURITY
 class InternalSession(Session):
 """special session created internaly by the repository"""

changeset 8767	a75670ef2d87
parent 8766	db80ffb2f71c
child 8768	3d105e270abc