app.auth.scopes.system_scopes module

class app.auth.scopes.system_scopes.Role(*, name: str, privilege: Annotated[int, Gt(gt=0)], permissions: List[str] | None)[source]

Bases: BaseModel

Represents a role within a scope, defining its name, privilege level, and permissions.

Parameters:

name (str) – The unique name of the role.
privilege (int) – The privilege level of the role, must be greater than zero.
permissions (Optional[List[str]]) – Optional list of permissions assigned to this role.

model_config: ClassVar[ConfigDict] = {}: Configuration for the model, should be a dictionary conforming to [ConfigDict][pydantic.config.ConfigDict].

class app.auth.scopes.system_scopes.Scope(*, name: str, roles: List[Role] = [])[source]

Bases: BaseModel

Defines a scope which contains multiple roles.

Parameters:

get_role(role_name: str) → Role | None[source]

Retrieve a role by its name within this scope.

model_config: ClassVar[ConfigDict] = {}: Configuration for the model, should be a dictionary conforming to [ConfigDict][pydantic.config.ConfigDict].

class app.auth.scopes.system_scopes.SystemScopes(*, scopes: List[Scope])[source]

Bases: BaseModel

Container for all defined scopes in the system.

classmethod from_yaml_config(path: str)[source]

Create an instance from a YAML configuration file.

Parameters:: path (str) – Path to YAML configuration file.
Returns:: An instance of the class initialized with the parsed configuration.
Return type:: PermissionHandler

get_scope(scope_name: str) → Scope | None[source]

Retrieve a Scope by its name or None.

has_priority(scope_name: str, subject_roles: str, target_roles: str)[source]

model_config: ClassVar[ConfigDict] = {}: Configuration for the model, should be a dictionary conforming to [ConfigDict][pydantic.config.ConfigDict].