authentik/authentik/policies/expression/api.py

"""Expression Policy API"""
from rest_framework.viewsets import ModelViewSet

from authentik.core.api.used_by import UsedByMixin
from authentik.policies.api.policies import PolicySerializer
from authentik.policies.expression.evaluator import PolicyEvaluator
from authentik.policies.expression.models import ExpressionPolicy


class ExpressionPolicySerializer(PolicySerializer):
    """Group Membership Policy Serializer"""

    def validate_expression(self, expr: str) -> str:
        """validate the syntax of the expression"""
        name = "temp-policy" if not self.instance else self.instance.name
        PolicyEvaluator(name).validate(expr)
        return expr

    class Meta:
        model = ExpressionPolicy
        fields = PolicySerializer.Meta.fields + ["expression"]


class ExpressionPolicyViewSet(UsedByMixin, ModelViewSet):
    """Source Viewset"""

    queryset = ExpressionPolicy.objects.all()
    serializer_class = ExpressionPolicySerializer
    filterset_fields = "__all__"
    ordering = ["name"]
    search_fields = ["name"]
policies/expression: add Expression based policy 2020-02-18 14:12:22 +00:00			`"""Expression Policy API"""`
			`from rest_framework.viewsets import ModelViewSet`

API: add endpoint to show by what objects an object is used (#995) * core: add used_by API to show what objects are affected before deletion Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/elements: add support for used_by API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: add authentik_used_by_shadows to shadow other models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: implement used_by API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * : fix duplicate imports Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> core: add action field to used_by api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: add UI for used_by action Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: add notice to tenant form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: fix naming in used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: check length for used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: fix used_by for non-pk models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * : improve __str__ on models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> core: add support for many to many in used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-06-10 09:58:12 +00:00			`from authentik.core.api.used_by import UsedByMixin`
policies: add test API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-03-29 21:32:42 +00:00			`from authentik.policies.api.policies import PolicySerializer`
policies/expression: migrate to web Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-04-02 14:42:30 +00:00			`from authentik.policies.expression.evaluator import PolicyEvaluator`
wip: rename to authentik (#361) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * : new sentry dsn tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject 2020-12-05 21:08:42 +00:00			`from authentik.policies.expression.models import ExpressionPolicy`
policies/expression: add Expression based policy 2020-02-18 14:12:22 +00:00

policies/*: cleanup api and forms, use correct inheritance 2021-02-11 18:48:19 +00:00			`class ExpressionPolicySerializer(PolicySerializer):`
policies/expression: add Expression based policy 2020-02-18 14:12:22 +00:00			`"""Group Membership Policy Serializer"""`

policies/expression: migrate to web Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-04-02 14:42:30 +00:00			`def validate_expression(self, expr: str) -> str:`
			`"""validate the syntax of the expression"""`
			`name = "temp-policy" if not self.instance else self.instance.name`
			`PolicyEvaluator(name).validate(expr)`
			`return expr`

policies/expression: add Expression based policy 2020-02-18 14:12:22 +00:00			`class Meta:`
			`model = ExpressionPolicy`
policies/*: cleanup api and forms, use correct inheritance 2021-02-11 18:48:19 +00:00			`fields = PolicySerializer.Meta.fields + ["expression"]`
policies/expression: add Expression based policy 2020-02-18 14:12:22 +00:00

API: add endpoint to show by what objects an object is used (#995) * core: add used_by API to show what objects are affected before deletion Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/elements: add support for used_by API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: add authentik_used_by_shadows to shadow other models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: implement used_by API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * : fix duplicate imports Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> core: add action field to used_by api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: add UI for used_by action Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: add notice to tenant form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: fix naming in used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: check length for used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: fix used_by for non-pk models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * : improve __str__ on models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> core: add support for many to many in used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-06-10 09:58:12 +00:00			`class ExpressionPolicyViewSet(UsedByMixin, ModelViewSet):`
policies/expression: add Expression based policy 2020-02-18 14:12:22 +00:00			`"""Source Viewset"""`

			`queryset = ExpressionPolicy.objects.all()`
			`serializer_class = ExpressionPolicySerializer`
*: ensure all resources can be filtered Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-08-07 14:12:38 +00:00			`filterset_fields = "__all__"`
			`ordering = ["name"]`
ensure all viewsets have filter and search and add tests (#2946) Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2022-05-24 20:01:18 +00:00			`search_fields = ["name"]`