role based filtering for keys

commit: c14de8f27621434dd8638403dc363d46c827d720 [log] [tgz]
author: Tony Mack <tmack@paris.CS.Princeton.EDU> Thu May 09 21:44:17 2013 -0400
committer: Tony Mack <tmack@paris.CS.Princeton.EDU> Thu May 09 21:44:17 2013 -0400
tree: 58ad957385157a03035437ed3bad423db63426aa
parent: 9b5dd7518bf84f73415e2ba4363758829cc2e8b8 [diff] [blame]
diff --git a/plstackapi/core/models/pluser.py b/plstackapi/core/models/pluser.py
index 6688cfe..d51572b 100644
--- a/plstackapi/core/models/pluser.py
+++ b/plstackapi/core/models/pluser.py

@@ -1,5 +1,6 @@
 import os
 import datetime
+from collections import defaultdict
 from django.db import models
 from plstackapi.core.models import PlCoreBase
 from plstackapi.core.models import Site
@@ -93,6 +94,19 @@
         # Simplest possible answer: Yes, always
         return True
 
+    def get_roles(self):
+        from plstackapi.core.models.site import SitePrivilege
+        from plstackapi.core.models.slice import SliceMembership
+
+        site_privileges = SitePrivilege.objects.filter(user=self)
+        slice_memberships = SliceMembership.objects.filter(user=self)
+        roles = defaultdict(list)
+        for site_privilege in site_privileges:
+            roles[site_privilege.site.login_base].append(site_privilege.role.role_type)
+        for slice_membership in slice_memberships:
+            roles[slice_membership.slice.name].append(slice_membership.role.role_type)
+        return roles   
+
     def save(self, *args, **kwds):
         if not hasattr(self, 'os_manager'):
             setattr(self, 'os_manager', OpenStackManager())
commit	c14de8f27621434dd8638403dc363d46c827d720	[log] [tgz]
author	Tony Mack <tmack@paris.CS.Princeton.EDU>	Thu May 09 21:44:17 2013 -0400
committer	Tony Mack <tmack@paris.CS.Princeton.EDU>	Thu May 09 21:44:17 2013 -0400
tree	58ad957385157a03035437ed3bad423db63426aa
parent	9b5dd7518bf84f73415e2ba4363758829cc2e8b8 [diff] [blame]