## Sharing Album Release Info with User

In [1]:
# Creates an Access Policy that shares event-level "read-only" permission with user (within a single tenancy).
#
# Main function, establishes a connection to DATATRAILS using an App Registration then uses that
# to create an Access Policy.
#
# Note: The purpose of DATATRAILS Jupyter Notebooks is to provide simplified examples that one can easily execute and digest.
# The DATATRAILS Python SDK is authored to work cleanly with more advanced coding techniques.
#
# DATATRAILS Python SDK: https://github.com/datatrails/datatrails-python
#

In [2]:
import random
import string

from json import dumps as json_dumps
from os import getenv
from warnings import filterwarnings

from dotenv import load_dotenv

from archivist.archivist import Archivist
from archivist.proof_mechanism import ProofMechanism
from archivist.logger import set_logger
from archivist.constants import ASSET_BEHAVIOURS

In [3]:
%reload_ext dotenv
%dotenv -o notebooks.env

In [4]:
# DATATRAILS_URL, DATATRAILS_APPREG_CLIENT, DATATRAILS_APPREG_SECRET are environment variables that represent connection parameters.
#
# DATATRAILS_URL = represents the url to the DATATRAILS application
# DATATRAILS_APPREG_CLIENT = represents the client ID from an Application Registration
# DATATRAILS_APPREG_SECRET = represents the client secret from an Application Registration
DATATRAILS_URL = getenv("DATATRAILS_URL")
DATATRAILS_APPREG_CLIENT = getenv("DATATRAILS_APPREG_CLIENT")
DATATRAILS_APPREG_SECRET = getenv("DATATRAILS_APPREG_SECRET")

In [5]:
"""
Main function of Access Policy creation.

* Connect to DATATRAILS with client ID and client secret
* Creates an Access Policy
* Prints response of Access Policy creation
"""

# Optional call to set the logger level.  The argument can be either
# "INFO" or "DEBUG".  For more sophisticated logging control see our
# documentation.
set_logger("INFO")

# Initialize connection to DATATRAILS
print("Connecting to DATATRAILS")
print("DATATRAILS_URL", DATATRAILS_URL)
arch = Archivist(
    DATATRAILS_URL, (DATATRAILS_APPREG_CLIENT, DATATRAILS_APPREG_SECRET), max_time=300
)

Connecting to DATATRAILS
DATATRAILS_URL https://app.datatrails.ai


In [6]:
def create_event_access(arch):
    """
    Creates an Access Policy that shares Album Release data for Artists with another user within a single tenancy
    """
    props = {
        "display_name": "Sharing Album Release",
        "description": "Sharing Album Release Information",
    }
    filters = [{"or": ["attributes.arc_display_type=Artists"]}]
    access_permissions = [
        {
            "asset_attributes_read": [
                "arc_display_name",
                "arc_display_type",
                "arc_description",
            ],
            "asset_attributes_write": [],
            "behaviours": ASSET_BEHAVIOURS,
            "event_arc_display_type_read": ["Album Release"],
            "event_arc_display_type_write": [],
            "include_attributes": [],
            "subjects": [],
            "user_attributes": [{"or": ["email=datatrails.test@gmail.com"]}],
        }
    ]

    return arch.access_policies.create(props, filters, access_permissions)

In [7]:
# Creates an Access Policy and prints result
access_policy = create_event_access(arch)
print("ACCESS_POLICY", json_dumps(access_policy, indent=4))

Refresh token


ACCESS_POLICY {
    "identity": "access_policies/f62f414b-ad42-456e-855a-4820fb34dfb4",
    "display_name": "Sharing Album Release",
    "filters": [
        {
            "or": [
                "attributes.arc_display_type=Artists"
            ]
        }
    ],
    "access_permissions": [
        {
            "subjects": [],
            "behaviours": [
                "RecordEvidence"
            ],
            "include_attributes": [],
            "user_attributes": [
                {
                    "or": [
                        "email=datatrails.test@gmail.com"
                    ]
                }
            ],
            "asset_attributes_read": [
                "arc_display_name",
                "arc_display_type",
                "arc_description"
            ],
            "asset_attributes_write": [],
            "event_arc_display_type_read": [
                "Album Release"
            ],
            "event_arc_display_type_write": []
        }
    ],
    "