Merge pull request #2 from Xhy-5000/master

leeqvip · web-flow · commit f6d8f8fc8dea · 2020-07-29T10:44:48.000+08:00
Help needed for pymongo_adapter
diff --git a/casbin_pymongo_adapter/adapter.py b/casbin_pymongo_adapter/adapter.py
@@ -1,35 +1,127 @@
+import casbin
 from casbin import persist
 from pymongo import MongoClient
 
+class CasbinRule:
+    '''
+    CasbinRule model
+    '''
+    ptype = None
+    v0 = None
+    v1 = None
+    v2 = None
+    v3 = None
+    v4 = None
+    v5 = None
+
+    def __init__(self, ptype):
+        self.ptype = ptype
+
+    def dict(self):
+        d = {'ptype': self.ptype}
+
+        for i, v in enumerate([self.v0, self.v1, self.v2, self.v3, self.v4, self.v5]):
+            if v is None:
+                break
+            d['v' + str(i)] = v
+
+        return d
+
+    def __str__(self):
+        return ', '.join(self.dict().values())
+
+    def __repr__(self):
+        return '<CasbinRule :"{}">'.format(str(self))
 
 class Adapter(persist.Adapter):
-    """the pymongo adapter for Casbin."""
+    """the interface for Casbin adapters."""
 
     def __init__(self, uri, dbname, collection="casbin_rule"):
         client = MongoClient(uri)
         db = client[dbname]
         self._collection = db[collection]
-        pass
 
     def load_policy(self, model):
-        """loads all policy rules from the storage."""
-        for lines in self._collection.find():
-            pass
+        '''
+        implementing add Interface for casbin \n
+        load all policy rules from mongodb \n
+        '''
+
+        for line in self._collection.find():
+            if 'ptype' not in line:
+                continue
+
+            rule = CasbinRule(line['ptype'])
+            if 'v0' in line:
+                rule.v0 = line['v0']
+            if 'v1' in line:
+                rule.v1 = line['v1']
+            if 'v2' in line:
+                rule.v2 = line['v2']
+            if 'v3' in line:
+                rule.v3 = line['v3']
+            if 'v4' in line:
+                rule.v4 = line['v4']
+            if 'v5' in line:
+                rule.v5 = line['v5']
+
+            persist.load_policy_line(str(rule), model)
+
+    def _save_policy_line(self, ptype, rule):
+        line = CasbinRule(ptype=ptype)
+        if len(rule) > 0:
+            line.v0 = rule[0]
+        if len(rule) > 1:
+            line.v1 = rule[1]
+        if len(rule) > 2:
+            line.v2 = rule[2]
+        if len(rule) > 3:
+            line.v3 = rule[3]
+        if len(rule) > 4:
+            line.v4 = rule[4]
+        if len(rule) > 5:
+            line.v5 = rule[5]
+        self._collection.insert_one(line.dict)
 
     def save_policy(self, model):
-        """saves all policy rules to the storage."""
-        pass
+        '''
+        implementing add Interface for casbin \n
+        save the policy in mongodb \n
+        '''
+        # for sec in ["p", "g"]:
+        #     if sec not in model.model.keys():
+        #         continue
+        #     for ptype, ast in model.model[sec].items():
+        #         for rule in ast.policy:
+        #             self._save_policy_line(ptype, rule)
+        # return True
+        self._collection.insert_one(model.dict)
 
     def add_policy(self, sec, ptype, rule):
-        """adds a policy rule to the storage."""
-        pass
+        """add policy rules to mongodb"""
+        # self._save_policy_line(ptype, rule)
+        line = CasbinRule(ptype = ptype)
+        if len(rule) > 0:
+            line.v0 = rule[0]
+        if len(rule) > 1:
+            line.v1 = rule[1]
+        if len(rule) > 2:
+            line.v2 = rule[2]
+        if len(rule) > 3:
+            line.v3 = rule[3]
+        if len(rule) > 4:
+            line.v4 = rule[4]
+        if len(rule) > 5:
+            line.v5 = rule[5]
+        self.save_policy(line)
+
 
     def remove_policy(self, sec, ptype, rule):
-        """removes a policy rule from the storage."""
+        """delete policy rules from mongodb"""
         pass
 
     def remove_filtered_policy(self, sec, ptype, field_index, *field_values):
-        """removes policy rules that match the filter from the storage.
-        This is part of the Auto-Save feature.
+        """
+        delete policy rules for matching filters from mongodb
         """
         pass
diff --git a/setup.py b/setup.py
@@ -8,7 +8,7 @@
 setuptools.setup(
     name="casbin_pymongo_adapter",
     version="0.1.0",
-    author="TechLee",
+    author="TechLee,Xhy-5000",
     author_email="techlee@qq.com",
     description="PyMongo Adapter for PyCasbin",
     long_description=long_description,
diff --git a/tests/rbac_model.conf b/tests/rbac_model.conf
@@ -0,0 +1,14 @@
+[request_definition]
+r = sub, obj, act
+
+[policy_definition]
+p = sub, obj, act
+
+[role_definition]
+g = _, _
+
+[policy_effect]
+e = some(where (p.eft == allow))
+
+[matchers]
+m = g(r.sub, p.sub) && r.obj == p.obj && r.act == p.act
diff --git a/tests/rbac_policy.csv b/tests/rbac_policy.csv
@@ -0,0 +1,6 @@
+p, alice, data1, read
+p, bob, data2, write
+p, data2_admin, data2, read
+p, data2_admin, data2, write
+
+g, alice, data2_admin
diff --git a/tests/test_adapter.py b/tests/test_adapter.py
@@ -0,0 +1,111 @@
+from casbin_pymongo_adapter.adapter import Adapter
+from casbin_pymongo_adapter.adapter import CasbinRule
+from unittest import TestCase
+import casbin
+import os
+import simpleeval
+
+def get_fixture(path):
+    '''
+    get model path
+    '''
+    dir_path = os.path.split(os.path.realpath(__file__))[0] + "/"
+    return os.path.abspath(dir_path + path)
+
+
+def get_enforcer():
+    adapter = Adapter('mongodb://localhost:27017', 'casbin_test')
+    c1 = CasbinRule(ptype='p', v0='alice', v1='data1', v2='read')
+    adapter.save_policy(c1)
+    c2 = CasbinRule(ptype='p', v0='bob', v1='data2', v2='write')
+    adapter.save_policy(c2)
+    c3 = CasbinRule(ptype='p', v0='data2_admin', v1='data2', v2='read')
+    adapter.save_policy(c3)
+    c4 = CasbinRule(ptype='p', v0='data2_admin', v1='data2', v2='write')
+    adapter.save_policy(c4)
+    c5 = CasbinRule(ptype='g', v0='alice', v1='data2_admin')
+    adapter.save_policy(c5)
+
+    return casbin.Enforcer(get_fixture('rbac_model.conf'), adapter, True)
+
+
+class TestConfig(TestCase):
+    '''
+    unittest
+    '''
+
+    def test_enforcer_basic(self):
+        '''
+        test policy
+        '''
+        e = get_enforcer()
+        self.assertFalse(e.enforce('alice', 'data1', 'write'))
+        self.assertFalse(e.enforce('bob', 'data1', 'read'))
+        self.assertTrue(e.enforce('bob', 'data2', 'write'))
+        self.assertTrue(e.enforce('alice', 'data2', 'read'))
+        self.assertTrue(e.enforce('alice', 'data2', 'write'))
+
+    def test_add_policy(self):
+        '''
+        test add_policy
+        '''
+        adapter = Adapter('mongodb://localhost:27017', 'casbin_test')
+        e = casbin.Enforcer(get_fixture('rbac_model.conf'), adapter, True)
+
+        try:
+            self.assertFalse(e.enforce('alice', 'data1', 'write'))
+            self.assertFalse(e.enforce('bob', 'data1', 'read'))
+            self.assertFalse(e.enforce('bob', 'data2', 'write'))
+            self.assertFalse(e.enforce('alice', 'data2', 'read'))
+            self.assertFalse(e.enforce('alice', 'data2', 'write'))
+        except simpleeval.NameNotDefined:
+            # This is caused by an upstream bug when there is no policy loaded
+            # Should be resolved in pycasbin >= 0.3
+            pass
+
+        adapter.add_policy(sec=None, ptype='p', rule=['alice', 'data1', 'read'])
+        adapter.add_policy(sec=None, ptype='p', rule=['bob', 'data2', 'write'])
+        adapter.add_policy(sec=None, ptype='p', rule=['data2_admin', 'data2', 'read'])
+        adapter.add_policy(sec=None, ptype='p', rule=['data2_admin', 'data2', 'write'])
+        adapter.add_policy(sec=None, ptype='g', rule=['alice', 'data2_admin'])
+
+        e.load_policy()
+
+        self.assertFalse(e.enforce('alice', 'data1', 'write'))
+        self.assertFalse(e.enforce('bob', 'data1', 'read'))
+        self.assertTrue(e.enforce('bob', 'data2', 'write'))
+        self.assertTrue(e.enforce('alice', 'data2', 'read'))
+        self.assertTrue(e.enforce('alice', 'data2', 'write'))
+        self.assertFalse(e.enforce('bogus', 'data2', 'write'))
+
+    def test_save_policy(self):
+        '''
+        test save_policy
+        '''
+        model = casbin.Enforcer(get_fixture('rbac_model.conf'), get_fixture('rbac_policy.csv')).model
+        adapter = Adapter('mongodb://localhost:27017', 'casbin_test')
+        adapter.save_policy(model)
+        e = casbin.Enforcer(get_fixture('rbac_model.conf'), adapter)
+
+        self.assertFalse(e.enforce('alice', 'data1', 'read'))
+        self.assertFalse(e.enforce('bob', 'data1', 'read'))
+        self.assertTrue(e.enforce('bob', 'data2', 'write'))
+        self.assertTrue(e.enforce('alice', 'data2', 'read'))
+        self.assertTrue(e.enforce('alice', 'data2', 'write'))
+
+    def test_str(self):
+        '''
+        test __str__ function
+        '''
+        rule = CasbinRule(ptype='p', v0='alice', v1='data1', v2='read')
+        self.assertEqual(str(rule), 'p, alice, data1, read')
+
+    def test_repr(self):
+        '''
+        test __repr__ function
+        '''
+        adapter = Adapter('mongodb://localhost:27017', 'casbin_test')
+        rule = CasbinRule(ptype='p', v0='alice', v1='data1', v2='read')
+        self.assertEqual(repr(rule), '<CasbinRule :"p, alice, data1, read">')
+        adapter.save_policy(rule)
+        self.assertRegex(repr(rule), r'<CasbinRule :"p, alice, data1, read">')
