New forbidden() plugin hook, closes #812

2025-12-10 16:51:24 +01:00 · 2020-06-30 21:17:38 -07:00 · 2020-06-30 21:17:38 -07:00 · 549b1c2063
commit 549b1c2063
parent 3ec5b1abf6
8 changed files with 100 additions and 20 deletions
--- a/tests/fixtures.py
+++ b/tests/fixtures.py
@ -45,6 +45,7 @@ EXPECTED_PLUGINS = [
            "extra_css_urls",
            "extra_js_urls",
            "extra_template_vars",
+            "forbidden",
            "permission_allowed",
            "prepare_connection",
            "prepare_jinja2_environment",
--- a/tests/plugins/my_plugin.py
+++ b/tests/plugins/my_plugin.py
@ -245,3 +245,10 @@ def register_magic_parameters():
        ("request", request),
        ("uuid", uuid),
    ]
+
+
+@hookimpl
+def forbidden(datasette, request, message):
+    datasette._last_forbidden_message = message
+    if request.path == "/data2":
+        return Response.redirect("/login?message=" + message)
--- a/tests/test_plugins.py
+++ b/tests/test_plugins.py
@ -684,3 +684,16 @@ def test_register_magic_parameters(restore_working_directory):
        assert 200 == response_get.status
        new_uuid = response_get.json[0][":_uuid_new"]
        assert 4 == new_uuid.count("-")
+
+
+def test_forbidden(restore_working_directory):
+    with make_app_client(
+        extra_databases={"data2.db": "create table logs (line text)"},
+        metadata={"allow": {}},
+    ) as client:
+        response = client.get("/")
+        assert 403 == response.status
+        response2 = client.get("/data2", allow_redirects=False)
+        assert 302 == response2.status
+        assert "/login?message=view-database" == response2.headers["Location"]
+        assert "view-database" == client.ds._last_forbidden_message