catapult/third_party/webapp2/webapp2_extras/appengine/users.py - platform/external/chromium-trace - Git at Google

 # -*- coding: utf-8 -*-
 """
     webapp2_extras.appengine.users
     ==============================

     Helpers for google.appengine.api.users.

     :copyright: 2011 tipfy.org.
     :license: Apache Sotware License, see LICENSE for details.
 """
 from google.appengine.api import users


 def login_required(handler_method):
     """A decorator to require that a user be logged in to access a handler.

     To use it, decorate your get() method like this::

         @login_required
         def get(self):
             user = users.get_current_user(self)
             self.response.out.write('Hello, ' + user.nickname())

     We will redirect to a login page if the user is not logged in. We always
     redirect to the request URI, and Google Accounts only redirects back as
     a GET request, so this should not be used for POSTs.
     """
     def check_login(self, *args, **kwargs):
         if self.request.method != 'GET':
             self.abort(400, detail='The login_required decorator '
                 'can only be used for GET requests.')

         user = users.get_current_user()
         if not user:
             return self.redirect(users.create_login_url(self.request.url))
         else:
             handler_method(self, *args, **kwargs)

     return check_login


 def admin_required(handler_method):
     """A decorator to require that a user be an admin for this application
     to access a handler.

     To use it, decorate your get() method like this::

         @admin_required
         def get(self):
             user = users.get_current_user(self)
             self.response.out.write('Hello, ' + user.nickname())

     We will redirect to a login page if the user is not logged in. We always
     redirect to the request URI, and Google Accounts only redirects back as
     a GET request, so this should not be used for POSTs.
     """
     def check_admin(self, *args, **kwargs):
         if self.request.method != 'GET':
             self.abort(400, detail='The admin_required decorator '
                 'can only be used for GET requests.')

         user = users.get_current_user()
         if not user:
             return self.redirect(users.create_login_url(self.request.url))
         elif not users.is_current_user_admin():
             self.abort(403)
         else:
             handler_method(self, *args, **kwargs)

     return check_admin
	# -- coding: utf-8 --
	"""
	webapp2_extras.appengine.users
	==============================

	Helpers for google.appengine.api.users.

	:copyright: 2011 tipfy.org.
	:license: Apache Sotware License, see LICENSE for details.
	"""
	from google.appengine.api import users


	def login_required(handler_method):
	"""A decorator to require that a user be logged in to access a handler.

	To use it, decorate your get() method like this::

	@login_required
	def get(self):
	user = users.get_current_user(self)
	self.response.out.write('Hello, ' + user.nickname())

	We will redirect to a login page if the user is not logged in. We always
	redirect to the request URI, and Google Accounts only redirects back as
	a GET request, so this should not be used for POSTs.
	"""
	def check_login(self, args, *kwargs):
	if self.request.method != 'GET':
	self.abort(400, detail='The login_required decorator '
	'can only be used for GET requests.')

	user = users.get_current_user()
	if not user:
	return self.redirect(users.create_login_url(self.request.url))
	else:
	handler_method(self, args, *kwargs)

	return check_login


	def admin_required(handler_method):
	"""A decorator to require that a user be an admin for this application
	to access a handler.

	To use it, decorate your get() method like this::

	@admin_required
	def get(self):
	user = users.get_current_user(self)
	self.response.out.write('Hello, ' + user.nickname())

	We will redirect to a login page if the user is not logged in. We always
	redirect to the request URI, and Google Accounts only redirects back as
	a GET request, so this should not be used for POSTs.
	"""
	def check_admin(self, args, *kwargs):
	if self.request.method != 'GET':
	self.abort(400, detail='The admin_required decorator '
	'can only be used for GET requests.')

	user = users.get_current_user()
	if not user:
	return self.redirect(users.create_login_url(self.request.url))
	elif not users.is_current_user_admin():
	self.abort(403)
	else:
	handler_method(self, args, *kwargs)

	return check_admin