ZiNSrSSKJr SSKJrJrJr SSKJrJ r S Sjr Sr Sr g) u 路由层装饰器 提供权限检查、参数验证等装饰器 注意:基础的 login_required 和 admin_required 使用 app.services.auth.decorators wraps)jsonifygrequest) CategoryAdminRolec^U4SjnU$)uZ 方向权限装饰器 - 支持三级权限 权限级别: - viewer: 只读权限,可查看配置 - editor: 编辑权限,可修改配置 - owner: 管理权限,可管理权限和删除 Args: min_role: 最低要求的权限级别 Usage: @category_permission_required('editor') def update_category(category_id): pass c4>^[T5UU4Sj5nU$)Nc>[[S5(a[R(d[SSS.5S4$[RnUR[ R :XaT "U0UD6$URS5=(d [RRS5nU(dT "U0UD6$[RRUURS9R5nU(d[SSS.5S 4$S S S S .nURURS5nURT S 5nXg:a*SSSS .n[SSURT T 5S3S.5S 4$T "U0UD6$)NuserF 请先登录successerror category_id)ruser_idu没有该方向的访问权限)viewereditorownerru查看u编辑u管理u需要u权限)hasattrrr rroler ADMINgetr view_argsrquery filter_byidfirst) argskwargsr r admin_record role_levels user_levelrequired_level role_namesfmin_roles F/Users/yu22x/Desktop/ddd_副本135/ctf/app/routes/common/decorators.pydecorated_functionKcategory_permission_required..decorator..decorated_functionso1f%%QVV5>JKSPP66DyyDJJ&$)&))!**]3[w7H7H7L7L]7[K$)&)))..88'9eg   5;[\]_bbb&'!a@K$):):A>J(__Xq9N*(0HxX $%jnnXx&H%IP  d%f% %r)r,r/r-s` r. decorator/category_permission_required..decorators" q& & & &N"!r1)r-r2s` r.category_permission_requiredr5 s")"T r1c0^[T5U4Sj5nU$)u 题目所有者权限装饰器 检查当前用户是否是题目的创建者或管理员 Usage: @challenge_owner_required def delete_challenge(challenge_id): pass c>[[S5(a[R(d[SSS.5S4$[RnUR[ R :XaT"U0UD6$URS5=(d [RRS5nU(d[SSS.5S4$S S K J n U"[U55nU(d[SS S.5S 4$URS 5UR:wa[SSS.5S4$T"U0UD6$![a&n[SS[U53S.5S4sSnA$SnAff=f)Nr Frrr challenge_idu缺少题目IDr)get_challenge_recordu题目不存在iru您没有权限操作此题目ru权限检查失败: i)rrr rrr rrrr app.models.database.operationsr:intr# Exceptionstr)r%r&r r8r: challengeer,s r.r/4challenge_owner_required..decorated_functionUsCq&!!u~FGL Lvv 99 "d%f% %zz.1ZW5F5F5J5J>5Z u7GHI3N N ^ K,S->?I5;LMNPSSS}}Y'47725;[\]_bbb3 $!&!! ^u9McRSfX7VWXZ]] ] ^s$-D'/.D'' E1E EEr)r,r/s` r.challenge_owner_requiredrBJs# 1X""> r1c^U4SjnU$)u JSON 数据验证装饰器 Args: *required_fields: 必需的字段名 Usage: @validate_json('name', 'email') def create_user(): data = request.get_json() # data 已经验证包含 name 和 email c4>^[T5UU4Sj5nU$)NcD>[R(d[SSS.5S4$[R"5nU(d[SSS.5S4$TVs/sH o3U;dM UPM nnU(a"[SSSR U53S.5S4$T"U0UD6$s snf)NFu请求必须是 JSON 格式rr9u请求数据不能为空u缺少必需字段: z, )ris_jsonrget_jsonjoin)r%r&datafieldmissing_fieldsr,required_fieldss r.r/.decorator..decorated_functions??$:  ##%D$7  2AVQUDUeNV$3DIIn4M3NO  d%f% %Ws  B$Br)r,r/rLs` r.r2 validate_json..decorators! q &  &."!r1r4)rLr2s` r. validate_jsonrOxs"4 r1N)r) __doc__ functoolsrflaskrrrapp.models.database.modelsrr r5rBrOr4r1r.rTs) %%:;|+\'r1