summaryrefslogtreecommitdiff
path: root/tests/pkgs/legacysecurityapp/__init__.py
diff options
context:
space:
mode:
Diffstat (limited to 'tests/pkgs/legacysecurityapp/__init__.py')
-rw-r--r--tests/pkgs/legacysecurityapp/__init__.py37
1 files changed, 37 insertions, 0 deletions
diff --git a/tests/pkgs/legacysecurityapp/__init__.py b/tests/pkgs/legacysecurityapp/__init__.py
new file mode 100644
index 000000000..12fb6104e
--- /dev/null
+++ b/tests/pkgs/legacysecurityapp/__init__.py
@@ -0,0 +1,37 @@
+from pyramid.response import Response
+from pyramid.authentication import RemoteUserAuthenticationPolicy
+from pyramid.security import Allowed, Denied
+
+
+class AuthorizationPolicy:
+ def permits(self, context, principals, permission):
+ if 'bob' in principals and permission == 'foo':
+ return Allowed('')
+ else:
+ return Denied('')
+
+ def principals_allowed_by_permission(self, context, permission):
+ raise NotImplementedError() # pragma: no cover
+
+
+def public(context, request):
+ return Response('Hello')
+
+
+def private(context, request):
+ return Response('Secret')
+
+
+def inaccessible(context, request):
+ raise AssertionError() # pragma: no cover
+
+
+def includeme(config):
+ config.set_authentication_policy(RemoteUserAuthenticationPolicy())
+ config.set_authorization_policy(AuthorizationPolicy())
+ config.add_route('public', '/public')
+ config.add_view(public, route_name='public')
+ config.add_route('private', '/private')
+ config.add_view(private, route_name='private', permission='foo')
+ config.add_route('inaccessible', '/inaccessible')
+ config.add_view(inaccessible, route_name='inaccessible', permission='bar')
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-11 08:16:04 +0000