Add policies for API access control to watcher project.

Change-Id: Ibdbe494c636dfaeca9cf2ef8724d0dade1f19c7f blueprint: watcher-policies
2016-06-25 19:43:42 +08:00
parent 6f2c82316c
commit bc06a7d419
22 changed files with 693 additions and 104 deletions
--- a/watcher/common/context.py
+++ b/watcher/common/context.py
@@ -20,7 +20,7 @@ class RequestContext(context.RequestContext):
                 domain_name=None, user=None, user_id=None, project=None,
                 project_id=None, is_admin=False, is_public_api=False,
                 read_only=False, show_deleted=False, request_id=None,
-                 trust_id=None, auth_token_info=None):
+                 trust_id=None, auth_token_info=None, roles=None):
        """Stores several additional request parameters:

        :param domain_id: The ID of the domain.
@@ -44,7 +44,8 @@ class RequestContext(context.RequestContext):
                                             is_admin=is_admin,
                                             read_only=read_only,
                                             show_deleted=show_deleted,
-                                             request_id=request_id)
+                                             request_id=request_id,
+                                             roles=roles)

    def to_dict(self):
        return {'auth_token': self.auth_token,
@@ -61,7 +62,8 @@ class RequestContext(context.RequestContext):
                'show_deleted': self.show_deleted,
                'request_id': self.request_id,
                'trust_id': self.trust_id,
-                'auth_token_info': self.auth_token_info}
+                'auth_token_info': self.auth_token_info,
+                'roles': self.roles}

    @classmethod
    def from_dict(cls, values):