In [2]:
class Role:
    def __init__(self, name, permissions, inherited_roles=None):
        # Initialize a Role object with a name, a set of permissions, and a list of inherited roles.
        self.name = name
        self.permissions = set(permissions)  # Convert the permissions list to a set for faster lookup and to avoid duplicates.
        self.inherited_roles = inherited_roles if inherited_roles else []  # Set inherited roles to an empty list if not provided.

# Define roles and inheritance
# Create an Employee role with permissions to read and write documents.
employee = Role("Employee", ["read_document", "write_document"])
# Create a Manager role with permission to approve requests, inheriting permissions from the Employee role.
manager = Role("Manager", ["approve_request"], [employee])
# Create an Admin role with permission to delete users, inheriting permissions from the Manager role.
admin = Role("Admin", ["delete_user"], [manager])

def get_permissions(role, visited=None):
    # If visited is not provided, initialize it as an empty set.
    if visited is None:
        visited = set()
    
    # Pruning: Check if the role has already been visited to avoid redundant processing.
    if role.name in visited:
        return set()  # Return an empty set if the role has already been visited.
    
    # Mark the current role as visited by adding its name to the visited set.
    visited.add(role.name)
    print("Visited:", visited)
    
    # Start with the role's own permissions.
    permissions = set(role.permissions)
    print("Permissions:", permissions)
    
    # Traverse inherited roles to gather permissions from them.
    for inherited_role in role.inherited_roles:
        # Recursively call get_permissions on each inherited role to gather and update permissions.
        permissions.update(get_permissions(inherited_role, visited))
        print("Permissions:", permissions)
    
    return permissions  # Return the accumulated set of permissions for the given role.

# Example usage
# Calculate all permissions for the Admin role, considering its inherited roles.
admin_permissions = get_permissions(admin)
# Print the complete set of permissions for the Admin role.
print("Admin Permissions:", admin_permissions)

Visited: {'Admin'}
Permissions: {'delete_user'}
Visited: {'Manager', 'Admin'}
Permissions: {'approve_request'}
Visited: {'Manager', 'Employee', 'Admin'}
Permissions: {'read_document', 'write_document'}
Permissions: {'approve_request', 'read_document', 'write_document'}
Permissions: {'delete_user', 'approve_request', 'read_document', 'write_document'}
Admin Permissions: {'delete_user', 'approve_request', 'read_document', 'write_document'}


## Example Code for Multi-Inheritance Pruning


In [5]:
class Role:
    def __init__(self, name, permissions, inherited_roles=None):
        self.name = name
        self.permissions = set(permissions)
        self.inherited_roles = inherited_roles if inherited_roles else []

# Define roles with multiple inheritance
employee = Role("Employee", ["read_document", "write_document"])
manager = Role("Manager", ["approve_request"], [employee])
special_admin = Role("SpecialAdmin", ["special_permission"], [employee])
admin = Role("Admin", ["delete_user"], [manager, special_admin])

def get_permissions(role, visited=None):
    if visited is None:
        visited = set()
    
    if role.name in visited:
        return set()
    
    visited.add(role.name)
    print("Visited:", visited)
    
    permissions = set(role.permissions)
    print("Permissions:", permissions)
    
    for inherited_role in role.inherited_roles:
        permissions.update(get_permissions(inherited_role, visited))
        print("Permissions:", permissions)
    
    return permissions

# Calculate permissions for Admin role with multi-inheritance
admin_permissions = get_permissions(admin)
print("Admin Permissions:", admin_permissions)

Visited: {'Admin'}
Permissions: {'delete_user'}
Visited: {'Manager', 'Admin'}
Permissions: {'approve_request'}
Visited: {'Manager', 'Employee', 'Admin'}
Permissions: {'read_document', 'write_document'}
Permissions: {'approve_request', 'read_document', 'write_document'}
Permissions: {'delete_user', 'approve_request', 'read_document', 'write_document'}
Visited: {'Manager', 'SpecialAdmin', 'Employee', 'Admin'}
Permissions: {'special_permission'}
Permissions: {'special_permission'}
Permissions: {'read_document', 'write_document', 'special_permission', 'delete_user', 'approve_request'}
Admin Permissions: {'read_document', 'write_document', 'special_permission', 'delete_user', 'approve_request'}
