diff options
| author | Carlos de la Guardia <cguardia@yahoo.com> | 2011-05-30 20:20:14 -0700 |
|---|---|---|
| committer | Carlos de la Guardia <cguardia@yahoo.com> | 2011-05-30 20:20:14 -0700 |
| commit | bd1221f2f26c39a34644842b9ee233152d0d1efa (patch) | |
| tree | 4cbfd64aa91c713072ed244ee4944f3f2c0b1a12 /docs/tutorials/wiki | |
| parent | f700c71817d3ab8b98149208e30e26de96616815 (diff) | |
| parent | 6346a4d686a0222349e338a8f5721b06280b0d90 (diff) | |
| download | pyramid-bd1221f2f26c39a34644842b9ee233152d0d1efa.tar.gz pyramid-bd1221f2f26c39a34644842b9ee233152d0d1efa.tar.bz2 pyramid-bd1221f2f26c39a34644842b9ee233152d0d1efa.zip | |
Merge pull request #200 from ppaez/tutorial-updates
Wiki tutorial updates
Diffstat (limited to 'docs/tutorials/wiki')
| -rw-r--r-- | docs/tutorials/wiki/authorization.rst | 24 |
1 files changed, 19 insertions, 5 deletions
diff --git a/docs/tutorials/wiki/authorization.rst b/docs/tutorials/wiki/authorization.rst index e4480d6d9..8781325d2 100644 --- a/docs/tutorials/wiki/authorization.rst +++ b/docs/tutorials/wiki/authorization.rst @@ -32,10 +32,17 @@ Adding Authentication and Authorization Policies We'll change our package's ``__init__.py`` file to enable an ``AuthTktAuthenticationPolicy`` and an ``ACLAuthorizationPolicy`` to enable -declarative security checking. When you're done, your ``__init__.py`` will -look like so: +declarative security checking. We need to import the new policies: + +.. literalinclude:: src/authorization/tutorial/__init__.py + :lines: 4-5,8 + :linenos: + :language: python + +Then, we'll add those policies to the configuration: .. literalinclude:: src/authorization/tutorial/__init__.py + :lines: 16-18,26-28 :linenos: :language: python @@ -46,6 +53,13 @@ by this policy: it is required. The ``callback`` is a reference to a ``groupfinder`` function in the ``tutorial`` package's ``security.py`` file. We haven't added that module yet, but we're about to. +When you're done, your ``__init__.py`` will +look like so: + +.. literalinclude:: src/authorization/tutorial/__init__.py + :linenos: + :language: python + Adding ``security.py`` ~~~~~~~~~~~~~~~~~~~~~~ @@ -57,12 +71,12 @@ content: :linenos: :language: python -The ``groupfinder`` function defined here is an authorization policy +The ``groupfinder`` function defined here is an :term:`authentication policy` "callback"; it is a callable that accepts a userid and a request. If the -userid exists in the set of users known by the system, the callback will +userid exists in the system, the callback will return a sequence of group identifiers (or an empty sequence if the user isn't a member of any groups). If the userid *does not* exist in the system, -the callback will return ``None``. In a production system this data will +the callback will return ``None``. In a production system, user and group data will most often come from a database, but here we use "dummy" data to represent user and groups sources. Note that the ``editor`` user is a member of the ``group:editors`` group in our dummy group data (the ``GROUPS`` data |