Mercurial > libervia-pubsub
comparison sat_pubsub/const.py @ 330:82d1259b3e36
backend, pgsql storage: better items/notification handling, various fixes:
- replaced const.VAL_AMODEL_ROSTER by const.VAL_AMODEL_PUBLISHER_ROSTER to follow change in pgsql schema
- implemented whitelist access model
- fixed bad access check during items retrieval (access was checked on recipient instead of requestor/sender)
- getItemsData and notification filtering now use inline callbacks: this make these complexe workflows far mor easy to read, and clarity is imperative in these security critical sections.
- publisher-roster access model now need to have only one owner, else it will fail. The idea is to use this model only when owner=publisher, else there is ambiguity on the roster to use to check access
- replaced getNodeOwner by node.getOwners, as a node can have several owners
- notifications filtering has been fixed in a similar way
- psql: simplified withPEP method, pep_table argument is actually not needed
- removed error.NotInRoster: error.Forbidden is used instead
- notifications now notify all the owners, not only the first one
| author | Goffi <goffi@goffi.org> |
|---|---|
| date | Sun, 26 Mar 2017 20:52:32 +0200 |
| parents | 8496af26be45 |
| children | efbdca10f0fb |
comparison
equal
deleted
inserted
replaced
| 329:98409ef42c94 | 330:82d1259b3e36 |
|---|---|
| 61 OPT_PERSIST_ITEMS = "pubsub#persist_items" | 61 OPT_PERSIST_ITEMS = "pubsub#persist_items" |
| 62 OPT_DELIVER_PAYLOADS = "pubsub#deliver_payloads" | 62 OPT_DELIVER_PAYLOADS = "pubsub#deliver_payloads" |
| 63 OPT_SEND_LAST_PUBLISHED_ITEM = "pubsub#send_last_published_item" | 63 OPT_SEND_LAST_PUBLISHED_ITEM = "pubsub#send_last_published_item" |
| 64 OPT_PUBLISH_MODEL = 'pubsub#publish_model' | 64 OPT_PUBLISH_MODEL = 'pubsub#publish_model' |
| 65 VAL_AMODEL_OPEN = 'open' | 65 VAL_AMODEL_OPEN = 'open' |
| 66 VAL_AMODEL_ROSTER = 'roster' | 66 VAL_AMODEL_PUBLISHER_ROSTER = 'publisher-roster' |
| 67 VAL_AMODEL_JID = 'jid' | 67 VAL_AMODEL_WHITELIST = 'whitelist' |
| 68 VAL_AMODEL_PUBLISH_ONLY = 'publish-only' | |
| 69 VAL_AMODEL_SELF_PUBLISHER = 'self-publisher' | |
| 68 VAL_AMODEL_DEFAULT = VAL_AMODEL_OPEN | 70 VAL_AMODEL_DEFAULT = VAL_AMODEL_OPEN |
| 71 VAL_AMODEL_ALL = (VAL_AMODEL_OPEN, VAL_AMODEL_PUBLISHER_ROSTER, VAL_AMODEL_WHITELIST, VAL_AMODEL_PUBLISH_ONLY, VAL_AMODEL_SELF_PUBLISHER) | |
| 69 VAL_PMODEL_PUBLISHERS = 'publishers' | 72 VAL_PMODEL_PUBLISHERS = 'publishers' |
| 70 VAL_PMODEL_SUBSCRIBERS = 'subscribers' | 73 VAL_PMODEL_SUBSCRIBERS = 'subscribers' |
| 71 VAL_PMODEL_OPEN = 'open' | 74 VAL_PMODEL_OPEN = 'open' |
| 72 VAL_PMODEL_DEFAULT = VAL_PMODEL_PUBLISHERS | 75 VAL_PMODEL_DEFAULT = VAL_PMODEL_PUBLISHERS |
| 73 VAL_RSM_MAX_DEFAULT = 10 # None for no limit | 76 VAL_RSM_MAX_DEFAULT = 10 # None for no limit |