cubicweb #2920304 [security] add a security debugging tool [resolved]
DBG_SECURITY & al. def test_contract_config_update(self): with self.perm_checker() as t: from cubicweb.server import DBG_SEC, debugged, tunesecurity with debugged(DBG_SEC): with tunesecurity(items=('rolling_dates',), capabilities=('update',)): ccf = t.efi(self.ccf) cc = ccf.reverse_commodity_config[0] cc.set_attributes(rolling_dates_offset=42) t.commit() Would yield: check_perm: 'update' 'attribute ContractConfig.rolling_dates_offset[Int]' [(ERQLExpression(Any X WHERE U has_update_permission X, X eid %(x)s, U eid %(u)s), {'eid': 2167}, True)] | |
priority | normal |
---|---|
type | enhancement |
done in | 3.18.0 |
load | 1.000 |
load left | 0.000 |
closed by | #1b549c1acd4f [schema,server] add a security debugging aid (closes #2920304) |
patch | [querier/security] instrument a bit the querier read security checks [applied][schema,server] add a security debugging aid (closes #2920304) [applied] |
similar entities
- dowser (http://www.aminus.net/wiki/Dowser)
- cubicweb #1698245 Convert __message to _cwmsgid to increase security
- cubicweb #511718 explain why rql expr insertion doesn't work to ease security debugging
- TheCubicWebBook #656194 CW Administration: how to give dynamic permissions
- cubicweb #1381390 Implement HTTP Strict Transport Security for https
[see all]