security Package¶

`security` Package¶

Tool Shed Security

class galaxy.webapps.tool_shed.security.Action(action, description, model)[source]¶: Bases: object

class galaxy.webapps.tool_shed.security.CommunityRBACAgent(model, permitted_actions=None)[source]¶

Bases: galaxy.webapps.tool_shed.security.RBACAgent

allow_action(roles, action, item)[source]¶: Method for checking a permission for the current user ( based on roles ) to perform a specific action on an item

associate_components(**kwd)[source]¶

associate_group_role(group, role)[source]¶

associate_repository_category(repository, category)[source]¶

associate_user_group(user, group)[source]¶

associate_user_role(user, role)[source]¶

can_push(app, user, repository)[source]¶

create_private_user_role(user)[source]¶

get_item_actions(action, item)[source]¶

get_private_user_role(user, auto_create=False)[source]¶

get_repository_reviewer_role()[source]¶

sa_session¶: Returns a SQLAlchemy session

set_entity_group_associations(groups=None, users=None, roles=None, delete_existing_assocs=True)[source]¶

set_entity_role_associations(roles=None, users=None, groups=None, repositories=None, delete_existing_assocs=True)[source]¶

set_entity_user_associations(users=None, roles=None, groups=None, delete_existing_assocs=True)[source]¶

user_can_administer_repository(user, repository)[source]¶: Return True if the received user can administer the received repository.

user_can_browse_component_review(app, repository, component_review, user)[source]¶

user_can_import_repository_archive(user, archive_owner)[source]¶

user_can_review_repositories(user)[source]¶

class galaxy.webapps.tool_shed.security.RBACAgent[source]¶

Handle Galaxy Tool Shed security

associate_components(**kwd)[source]¶

associate_user_role(user, role)[source]¶

convert_permitted_action_strings(permitted_action_strings)[source]¶: When getting permitted actions from an untrusted source like a form, ensure that they match our actual permitted actions.

create_private_user_role(user)[source]¶

get_action(name, default=None)[source]¶: Get a permitted action by its dict key or action name

get_actions()[source]¶: Get all permitted actions as a list of Action objects

get_item_actions(action, item)[source]¶

get_private_user_role(user)[source]¶

permitted_actions = <galaxy.util.bunch.Bunch object>¶

galaxy.webapps.tool_shed.security.get_permitted_actions(filter=None)[source]¶: Utility method to return a subset of RBACAgent’s permitted actions