CLI permissions #4
Comments
txomon
added
kind/CLI
|
So I have been looking at possible implementations and I have realised there is a limitation at the moment with the interface we are using for commands. Click apps SoAThere are two limitations coming from Click. First one is that they don't have the need to limit the access to commands, and they don't know who it is executing the command, meaning that there is only a user executing it, and it's available through the To solve this, Click provides a context object that can be passed around the commands. A solution would be to have aBot set the SolutionsThese are the solutions that have ocurred to me Fork clickOne of the solutions we could go through is to fork click, and delete most of it's functionality that doesn't apply to us, but we would be missing any future updates (IDK if that's important, I'm quite frustrated with them) Continue patching clickAbot already has an extension of click, by overriding most of the classes with custom mixins that provide the functionality we need. This solution doens't really make me happy and I would avoid it even more than the fork. I hate extending things that might break when they do a change we are not aware of. Use contextvarsPython3.7 has a PEP that goes along the lines of what I did before with setting up a coroutine level context rather than a thread one. However the limitation of that one is was that context didn't propagate to new tasks from their parents. Python3.7 comes with builtin context variables, that in theory solve this problem. I don't like the idea of generating our own context by hand, but the alternatives are not better at all. We would be having a flask-like requests variable (or current event, or whatever) that would return the current event for whatever function tries to get the value through that context var. Problem is that we need to run python3.7 for that. Does anyone have better ideas? Because this is literally everything I could think about :/ |
Use case and definition of done
There is a need to avoid having everyone running commands through the chat. We need to have a way to only let certain commands be run by users.
The MVP needs to allow 2 execution levels, and be possible to add a few others with little to no effort later, as other features are available.
Implementation suggestion
The suggestion before was to use Yosai, but after an analysis of the structure of the project, we would only be using the Authz bits, which run in full sync mode, besides that making use of it for 20 lines of code is not worth it.
There is https://github.com/txomon/whoiam that has a demo on overloading the AWS IAM for authz. This would be a side project for an interface, but underlying authz mechanics could be easily used here. However, the cost vs the benefit of development is really high, making this solution unsuitable.
A simple solution to me would be to have a authz
levelassigned to each user, and that via the level we filter some commands out. Also, this should rather be in abot I think than in mosbot, therefore justifying a simpler solution for our usecase.The text was updated successfully, but these errors were encountered: