feat: add support for admin user to become / stop being root

2024-08-05 14:21:54 -05:00 · 2024-08-05 14:21:54 -05:00 · fc339ba81b
commit fc339ba81b
parent a2ba88ca8f
9 changed files with 335 additions and 22 deletions
--- a/tests/test_auth.py
+++ b/tests/test_auth.py
@ -137,3 +137,9 @@ class TestWuttaSecurityPolicy(TestCase):
        self.user.roles.append(role)
        self.session.commit()
        self.assertTrue(self.policy.permits(self.request, None, 'baz.edit'))
+
+        # now let's try another perm - we won't grant it, but will
+        # confirm user is denied access unless they become root
+        self.assertFalse(self.policy.permits(self.request, None, 'some-root-perm'))
+        self.request.is_root = True
+        self.assertTrue(self.policy.permits(self.request, None, 'some-root-perm'))