Add: owner metadata

author: Lars Wirzenius <liw@liw.fi> 2018-11-05 10:36:02 +0200
committer: Lars Wirzenius <liw@liw.fi> 2018-11-05 10:36:02 +0200
commit: 82aa16698668375881e9edcab46965e4be3f5b83 (patch)
tree: 855cb8434e8cee343c1d7435337fe3af440a217f /muck
parent: 782d42ef1ee0c7edb2a9cf68a24ea5ba60eca8cc (diff)
download: muck-poc-82aa16698668375881e9edcab46965e4be3f5b83.tar.gz
2 files changed, 10 insertions, 0 deletions
diff --git a/muck/authz.py b/muck/authz.py
index a9d5dda..bafd880 100644
--- a/muck/authz.py
+++ b/muck/authz.py
@@ -34,6 +34,9 @@ class AuthorizationChecker:
         required_scopes = set(required_scopes)
         return scopes.intersection(required_scopes) == required_scopes
 
+    def get_claims_from_token(self, r):
+        return self._get_token(r)
+
     def _get_token(self, r):
         authz = r.get_authorization()
         try:
diff --git a/muck/authz_tests.py b/muck/authz_tests.py
index fffb96b..37ada26 100644
--- a/muck/authz_tests.py
+++ b/muck/authz_tests.py
@@ -52,3 +52,10 @@ class AuthorizationCheckerTests(unittest.TestCase):
     def test_allows_for_acceptable_request(self):
         r = self.create_request(['foo'])
         self.assertTrue(self.ac.request_is_allowed(r, 'GET', ['foo']))
+
+    def test_returns_claims_from_token(self):
+        r = self.create_request(['foo'])
+        expected = {
+            'scope': 'foo',
+        }
+        self.assertTrue(self.ac.get_claims_from_token(r), expected)
author	Lars Wirzenius <liw@liw.fi>	2018-11-05 10:36:02 +0200
committer	Lars Wirzenius <liw@liw.fi>	2018-11-05 10:36:02 +0200
commit	82aa16698668375881e9edcab46965e4be3f5b83 (patch)
tree	855cb8434e8cee343c1d7435337fe3af440a217f /muck
parent	782d42ef1ee0c7edb2a9cf68a24ea5ba60eca8cc (diff)
download	muck-poc-82aa16698668375881e9edcab46965e4be3f5b83.tar.gz