Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Users:v2 expand access rights and user attributes #21

Closed
17 tasks done
obervinov opened this issue Aug 6, 2023 · 1 comment · Fixed by #24
Closed
17 tasks done

Users:v2 expand access rights and user attributes #21

obervinov opened this issue Aug 6, 2023 · 1 comment · Fixed by #24
Assignees
@obervinov
Labels
documentation Improvements or additions to documentation enhancement New feature or request
Milestone
release/v2.0.0

Comments

@obervinov
Copy link
Owner

obervinov commented Aug 6, 2023
edited
Loading

Context
For more flexible management of telegram bot users and their rights to the bot, it is necessary to expand user attributes, add additional methods for working with these attributes and rewrite existing class methods for a new model.

Data structure requirements

  • role attributes (configuration)
{'roles': ['role_admin', 'role_guest'']}
  • rate limit attributes (configuration)
{'requests': {'requests_per_day': 10, 'requests_per_hour': 1, 'random_shift_minutes': 15}}
  • rate limit history (data)
{'requests_ counters': {'requests_per_day': 9, 'requests_per_hour': 1}}
  • rate limit applied (data)
{'rate_limits': {'end_time': '2023-08-07 10:39:00.000000' }}

Requirements

  • add a rate limit check method for an account: if rl is applied, return the end time, if not applied, none
  • the rights check method should accept user_id and role_name as input: return allowed if user_id contains role_name and denied if not
  • for the convenience of using the module by bots, select an entry point in a separate method that will immediately call all three methods: authentication(), authorization(), rl_controller() - aggregate the responses of these methods into a single dictionary and give in the response
  • if the authorization of the role and user was successful, write +1 request to the request counter
  • if the incoming role is startup, the rate limit counter should not be taken into account
  • if the hourly rate_limit + random_shift_minutes has expired, reset the hourly rate_limit counter

Data structure in vault
For configuration:

  • configuration/users/{user_id}:status -> authentication()
  • configuration/users/{user_id}:roles -> authorization()
  • configuration/users/{user_id}:requests -> rl_controller()

For dynamic data:

  • data/users/{user_id}:requests_counters -> rl_controller()
  • data/users/{user_id}:rate_limits -> rl_controller()
  • data/users/{user_id}:authorization -> authorization()
  • data/users/{user_id}:authentication -> authentication()

New methods:

  • user_access_check() - an entry point that aggregates function calls and responses for unification and ease of use in bots.
  • authentication() - method for checking user access rights to the bot
  • authorization() - method for checking access rights to a specific bot functionality (assigning roles)
  • rl_controller() - method for implementing request accounting and request rate limiting in the context of users

Documentation:

  • Assigning methods
  • General concept of the module
  • Configuration Structure
  • Persistent data structure
  • Usage examples
  • Diagram with the logic of the module
  • More information about vault client and module
@obervinov obervinov added the enhancement New feature or request label Aug 6, 2023
@obervinov obervinov self-assigned this Aug 6, 2023
@obervinov obervinov mentioned this issue Aug 23, 2023
Closed
12 tasks
@obervinov obervinov added this to the release/v2.0.0 milestone Sep 16, 2023
@obervinov obervinov linked a pull request Sep 16, 2023 that will close this issue
PR-24: Create new release v2.0.0 - additional users attributes and new module concept #24
Merged
This was referenced Oct 23, 2023
Closed
Merged
@obervinov
Copy link
Owner Author

done
4911923
ee18c20
48966d4
0b2a79d
ec24cd1
1cf6d67
8d0a568
dd5163a

@obervinov obervinov added the documentation Improvements or additions to documentation label Oct 26, 2023
@obervinov obervinov changed the title Expand access rights and user attributes Users:v2 expand access rights and user attributes Oct 26, 2023
obervinov added a commit that referenced this issue Nov 7, 2023
@obervinov
PR-24: Create new release v2.0.0 - additional users attributes and ne…
5dc4dc5 
…w module concept (#24)

### What's Changed
**Full Changelog**: v1.0.5...v2.0.0 by @obervinov in #24
#### 📚 Documentation
* (Users:v2 expand access rights and user attributes)[#21]
* (Improvements to the Vault dependency )[#27]
#### 💥 Breaking Changes
* (Users:v2 expand access rights and user attributes)[#21]
* (Deprecate outdated class and methods users:v1)[#26]
#### 🚀 Features
* (Update template workflow to v1.0.5)[#23]
* (Users:v2 expand access rights and user attributes)[#21]
* (Improvements to the Vault dependency )[#27]
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@obervinov obervinov

Labels
documentation Improvements or additions to documentation enhancement New feature or request
Projects
@obervinov's Python packages
Status: Done
Milestone
release/v2.0.0
1 participant
@obervinov