Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • reverse_testing
  • py3django2.2
  • hotfix/v1.2.6
  • v2.0.2
  • v2.0.1
  • v2.0.0
  • v1.3.0
  • v1.2.9
  • v1.2.8
  • v1.2.7
  • v1.2.6
  • v1.2.5
  • v1.2.4
  • v1.2.3
  • v1.2.2
  • v1.2.1
  • v1.2.0
  • v1.1.0
  • v1.0
  • v0.9
  • v0.8
  • v0.7
  • v0.6
24 results
Blame Permalink
verification.py 1016 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29 






from django.core.exceptions import ImproperlyConfigured, PermissionDenied


def is_allowed(request, allowed_roles, raise_exception):
    # allowed_roles can either be a string (for just one)
    # or a tuple or list (for several)
    if not isinstance(allowed_roles, (list, tuple)):
        allowed = (allowed_roles, )
    else:
        allowed = allowed_roles
    
    lti_launch = request.session.get('LTI_LAUNCH', None)
    if not isinstance(lti_launch, dict):
        # If this is raised, then likely the project doesn't have
        # the correct settings or is being run outside of an lti context
        raise ImproperlyConfigured("No LTI_LAUNCH found in session")
    user_roles = lti_launch.get('roles', [])
    is_user_allowed = set(allowed) & set(user_roles)
    
    if not is_user_allowed and raise_exception:
        raise PermissionDenied
    
    return is_user_allowed


def has_lti_role(request, role):
    roles = request.session['LTI_LAUNCH'].get('roles', [])
    return set(roles) & set([role])