from PLC.Parameter import Parameter, Mixed
from PLC.Keys import Key, Keys
from PLC.Persons import Person, Persons
-from PLC.Auth import PasswordAuth
+from PLC.Auth import Auth
+
+can_update = lambda field_value: field_value[0] in ['key_type','key']
class AddPersonKey(Method):
"""
roles = ['admin', 'pi', 'tech', 'user']
+ key_fields = dict(list(filter(can_update, list(Key.fields.items()))))
+
accepts = [
- PasswordAuth(),
+ Auth(),
Mixed(Person.fields['person_id'],
Person.fields['email']),
- Key.fields['key_type'],
- Key.fields['key']
+ key_fields
]
returns = Parameter(int, 'New key_id (> 0) if successful')
- def call(self, auth, person_id_or_email, key_type, key_value):
+ def call(self, auth, person_id_or_email, key_fields):
+ key_fields = dict(list(filter(can_update, list(key_fields.items()))))
+
# Get account details
- persons = Persons(self.api, [person_id_or_email]).values()
+ persons = Persons(self.api, [person_id_or_email])
if not persons:
- raise PLCInvalidArgument, "No such account"
+ raise PLCInvalidArgument("No such account")
person = persons[0]
- # If we are not admin, make sure caller is adding a key to their account
+ if person['peer_id'] is not None:
+ raise PLCInvalidArgument("Not a local account")
+
+ # If we are not admin, make sure caller is adding a key to their account
if 'admin' not in self.caller['roles']:
if person['person_id'] != self.caller['person_id']:
- raise PLCPermissionDenied, "You may only modify your own keys"
+ raise PLCPermissionDenied("You may only modify your own keys")
- key = Key(self.api)
- key['person_id'] = person['person_id']
- key['key_type'] = key_type
- key['key'] = key_value
+ key = Key(self.api, key_fields)
key.sync(commit = False)
-
person.add_key(key, commit = True)
-
+
+ # Logging variables
+ self.event_objects = {'Person': [person['person_id']],
+ 'Key': [key['key_id']]}
+ self.message = 'Key %d added to person %d' % \
+ (key['key_id'], person['person_id'])
+
return key['key_id']
git://git.onelab.eu / plcapi.git / blobdiff