github
/
incubator-airflow
зеркало из https://github.com/github/incubator-airflow.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

[AIRFLOW-3103][AIRFLOW-3147] Update flask-appbuilder (#3937)

This commit is contained in:
Joshua Carp 2018-10-04 03:20:24 -04:00 коммит произвёл Ash Berlin-Taylor
Родитель 7103c2aba0
Коммит fb5ffd146a
15 изменённых файлов: 55 добавлений и 21 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

16
UPDATING.md
Просмотреть файл

@ -52,6 +52,22 @@ To delete a user:
airflow users --delete --username jondoe
```
### Custom auth backends interface change
We have updated the version of flask-login we depend upon, and as a result any
custom auth backends might need a small change: `is_active`,
`is_authenticated`, and `is_anonymous` should now be properties. What this means is if
previously you had this in your user class
def is_active(self):
return self.active
then you need to change it like this
@property
def is_active(self):
return self.active
## Airflow 1.10
Installation and upgrading requires setting `SLUGIFY_USES_TEXT_UNIDECODE=yes` in your environment or

3
airflow/contrib/auth/backends/github_enterprise_auth.py
Просмотреть файл

@ -41,14 +41,17 @@ class GHEUser(models.User):
def __init__(self, user):
self.user = user
@property
def is_active(self):
"""Required by flask_login"""
return True
@property
def is_authenticated(self):
"""Required by flask_login"""
return True
@property
def is_anonymous(self):
"""Required by flask_login"""
return False

3
airflow/contrib/auth/backends/google_auth.py
Просмотреть файл

@ -42,14 +42,17 @@ class GoogleUser(models.User):
def __init__(self, user):
self.user = user
@property
def is_active(self):
"""Required by flask_login"""
return True
@property
def is_authenticated(self):
"""Required by flask_login"""
return True
@property
def is_anonymous(self):
"""Required by flask_login"""
return False

5
airflow/contrib/auth/backends/kerberos_auth.py
Просмотреть файл

@ -71,14 +71,17 @@ class KerberosUser(models.User, LoggingMixin):
return
@property
def is_active(self):
"""Required by flask_login"""
return True
@property
def is_authenticated(self):
"""Required by flask_login"""
return True
@property
def is_anonymous(self):
"""Required by flask_login"""
return False
@ -108,7 +111,7 @@ def load_user(userid, session=None):
@provide_session
def login(self, request, session=None):
if current_user.is_authenticated():
if current_user.is_authenticated:
flash("You are already logged in")
return redirect(url_for('index'))

5
airflow/contrib/auth/backends/ldap_auth.py
Просмотреть файл

@ -235,14 +235,17 @@ class LdapUser(models.User):
log.info("Password incorrect for user %s", username)
raise AuthenticationError("Invalid username or password")
@property
def is_active(self):
"""Required by flask_login"""
return True
@property
def is_authenticated(self):
"""Required by flask_login"""
return True
@property
def is_anonymous(self):
"""Required by flask_login"""
return False
@ -273,7 +276,7 @@ def load_user(userid, session=None):
@provide_session
def login(self, request, session=None):
if current_user.is_authenticated():
if current_user.is_authenticated:
flash("You are already logged in")
return redirect(url_for('admin.index'))

5
airflow/contrib/auth/backends/password_auth.py
Просмотреть файл

@ -71,14 +71,17 @@ class PasswordUser(models.User):
def authenticate(self, plaintext):
return check_password_hash(self._password, plaintext)
@property
def is_active(self):
"""Required by flask_login"""
return True
@property
def is_authenticated(self):
"""Required by flask_login"""
return True
@property
def is_anonymous(self):
"""Required by flask_login"""
return False
@ -137,7 +140,7 @@ def authenticate(session, username, password):
@provide_session
def login(self, request, session=None):
if current_user.is_authenticated():
if current_user.is_authenticated:
flash("You are already logged in")
return redirect(url_for('admin.index'))

3
airflow/default_login.py
Просмотреть файл

@ -44,14 +44,17 @@ class DefaultUser(object):
def __init__(self, user):
self.user = user
@property
def is_active(self):
"""Required by flask_login"""
return True
@property
def is_authenticated(self):
"""Required by flask_login"""
return True
@property
def is_anonymous(self):
"""Required by flask_login"""
return False

8
airflow/www/utils.py
Просмотреть файл

@ -73,8 +73,8 @@ class LoginMixin(object):
def is_accessible(self):
return (
not AUTHENTICATE or (
not current_user.is_anonymous() and
current_user.is_authenticated()
not current_user.is_anonymous and
current_user.is_authenticated
)
)
@ -83,7 +83,7 @@ class SuperUserMixin(object):
def is_accessible(self):
return (
not AUTHENTICATE or
(not current_user.is_anonymous() and current_user.is_superuser())
(not current_user.is_anonymous and current_user.is_superuser())
)
@ -91,7 +91,7 @@ class DataProfilingMixin(object):
def is_accessible(self):
return (
not AUTHENTICATE or
(not current_user.is_anonymous() and current_user.data_profiling())
(not current_user.is_anonymous and current_user.data_profiling())
)

2
airflow/www/views.py
Просмотреть файл

@ -260,7 +260,7 @@ def data_profiling_required(f):
def decorated_function(*args, **kwargs):
if (
current_app.config['LOGIN_DISABLED'] or
(not current_user.is_anonymous() and current_user.data_profiling())
(not current_user.is_anonymous and current_user.data_profiling())
):
return f(*args, **kwargs)
else:

2
airflow/www_rbac/decorators.py
Просмотреть файл

@ -32,7 +32,7 @@ def action_logging(f):
@functools.wraps(f)
def wrapper(*args, **kwargs):
session = settings.Session()
if g.user.is_anonymous():
if g.user.is_anonymous:
user = 'anonymous'
else:
user = g.user.username

6
airflow/www_rbac/security.py
Просмотреть файл

@ -195,7 +195,7 @@ class AirflowSecurityManager(SecurityManager):
"""
if user is None:
user = g.user
if user.is_anonymous():
if user.is_anonymous:
public_role = appbuilder.config.get('AUTH_ROLE_PUBLIC')
return [appbuilder.security_manager.find_role(public_role)] \
if public_role else []
@ -221,7 +221,7 @@ class AirflowSecurityManager(SecurityManager):
if not username:
username = g.user
if username.is_anonymous() or 'Public' in username.roles:
if username.is_anonymous or 'Public' in username.roles:
# return an empty list if the role is public
return set()
@ -245,7 +245,7 @@ class AirflowSecurityManager(SecurityManager):
"""
if not user:
user = g.user
if user.is_anonymous():
if user.is_anonymous:
return self.is_item_public(permission, view_name)
return self._has_view_access(user, permission, view_name)

2
airflow/www_rbac/templates/appbuilder/navbar_right.html
Просмотреть файл

@ -47,7 +47,7 @@
<!-- clock -->
<li><a id="clock"></a></li>
{% if not current_user.is_anonymous() %}
{% if not current_user.is_anonymous %}
<li class="dropdown">
<a class="dropdown-toggle" data-toggle="dropdown" href="#">
<span class="fa fa-user"></span> {{g.user.get_full_name()}}<b class="caret"></b>

4
setup.py
Просмотреть файл

@ -298,10 +298,10 @@ def do_setup():
'croniter>=0.3.17, <0.4',
'dill>=0.2.2, <0.3',
'flask>=0.12.4, <0.13',
'flask-appbuilder>=1.11.1, <2.0.0',
'flask-appbuilder>=1.12, <2.0.0',
'flask-admin==1.4.1',
'flask-caching>=1.3.3, <1.4.0',
'flask-login==0.2.11',
'flask-login>=0.3, <0.5',
'flask-swagger==0.2.13',
'flask-wtf>=0.14.2, <0.15',
'funcsigs==1.0.0',

6
tests/www/test_utils.py
Просмотреть файл

@ -117,8 +117,8 @@ class UtilsTest(unittest.TestCase):
self.assertEqual('page=3&search=bash_&showPaused=False',
utils.get_params(showPaused=False, page=3, search='bash_'))
# flask_login is loaded by calling flask_login._get_user.
@mock.patch("flask_login._get_user")
# flask_login is loaded by calling flask_login.utils._get_user.
@mock.patch("flask_login.utils._get_user")
@mock.patch("airflow.settings.Session")
def test_action_logging_with_login_user(self, mocked_session, mocked_get_user):
fake_username = 'someone'
@ -143,7 +143,7 @@ class UtilsTest(unittest.TestCase):
self.assertEqual(fake_username, kwargs['owner'])
mocked_session_instance.add.assert_called_once()
@mock.patch("flask_login._get_user")
@mock.patch("flask_login.utils._get_user")
@mock.patch("airflow.settings.Session")
def test_action_logging_with_invalid_user(self, mocked_session, mocked_get_user):
anonymous_username = 'anonymous'

6
tests/www_rbac/test_security.py
Просмотреть файл

@ -109,7 +109,7 @@ class TestSecurity(unittest.TestCase):
def test_get_user_roles(self):
user = mock.MagicMock()
user.is_anonymous.return_value = False
user.is_anonymous = False
roles = self.appbuilder.sm.find_role('Admin')
user.roles = roles
self.assertEqual(self.security_manager.get_user_roles(user), roles)
@ -144,7 +144,7 @@ class TestSecurity(unittest.TestCase):
self.security_manager.init_role(role_name, role_vms, role_perms)
role = self.security_manager.find_role(role_name)
user.roles = [role]
user.is_anonymous.return_value = False
user.is_anonymous = False
mock_get_all_permissions_views.return_value = {('can_dag_read', 'dag_id')}
mock_get_user_roles.return_value = [role]
@ -154,7 +154,7 @@ class TestSecurity(unittest.TestCase):
@mock.patch('airflow.www_rbac.security.AirflowSecurityManager._has_view_access')
def test_has_access(self, mock_has_view_access):
user = mock.MagicMock()
user.is_anonymous.return_value = False
user.is_anonymous = False
mock_has_view_access.return_value = True
self.assertTrue(self.security_manager.has_access('perm', 'view', user))