Added User and No access roles in DB
- TODO: add update db script to add missing roles
This commit is contained in:
Davor
parent
19802f56eb
commit
c153b04c62
1 changed files with 9 additions and 6 deletions
|
|
@ -256,16 +256,19 @@ def consent():
|
||||||
# Default access level
|
# Default access level
|
||||||
roles = []
|
roles = []
|
||||||
if app_obj:
|
if app_obj:
|
||||||
role_objects = (
|
role_object = (
|
||||||
db.session.query(AppRole)
|
db.session.query(AppRole)
|
||||||
.filter(AppRole.app_id == app_obj.id)
|
.filter(AppRole.app_id == app_obj.id)
|
||||||
.filter(AppRole.user_id == user.uuid)
|
.filter(AppRole.user_id == user.uuid)
|
||||||
|
.first()
|
||||||
)
|
)
|
||||||
for role_obj in role_objects:
|
print(role_object)
|
||||||
app_role = RoleService.get_role_by_id(role_obj.role_id)
|
if role_object is None or role_object.role_id is None:
|
||||||
if (app_role is None):
|
# If there is no role in app_roles or the role_id for an app is null user has no permissions
|
||||||
roles.append('user')
|
# TODO: how to handle if the user has no access for an app?
|
||||||
continue
|
current_app.logger.error(f"User has no access for: {app_obj.name}")
|
||||||
|
app_role = RoleService.get_role_by_id(role_object.role_id)
|
||||||
|
if (app_role is not None):
|
||||||
roles.append(app_role.name)
|
roles.append(app_role.name)
|
||||||
|
|
||||||
current_app.logger.info(f"Using '{roles}' when applying consent for {kratos_id}")
|
current_app.logger.info(f"Using '{roles}' when applying consent for {kratos_id}")
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue