[Flask] Object-level permissions?

fouad CHENNOUF fouad.chennouf at gmail.com
Sat Sep 19 11:03:50 CEST 2015


Hi Robert,

You can almost do it with flask-security. the extension has a role
management feature, you just need to link the role with the Company and it
should work fine. If you need to add attributes in your relations between
persons and role(user rights) or between role and company (group rights)
you'll have to move from many to many relationship in sqlalchemy to
association object.



*______________________________________________________________*

*Fouad CHENNOUF*

*CTO and Co-founder of Wilab **(Web/Software/Mobile app development)*

<http://www.wilab-tech.com>

*(+33).06.29.23.44.73 / *

*(+213).06.73.24.84.33 *
* <http://www.linkedin.com/in/chennouf>   <https://twitter.com/fouadchen>*





2015-09-19 7:05 GMT+01:00 Robert Grant <robertlagrant at gmail.com>:

> Hi all! Is there an equivalent to something like django-guardian available
> as a flask extension? It associates a user permission with an individual
> object (e.g. Person1 is admin of Company3). Using SQLAlchemy, in case it
> makes a difference.
>
> Thanks!
>
> Sent from my phone
>
> _______________________________________________
> Flask mailing list
> Flask at python.org
> https://mail.python.org/mailman/listinfo/flask
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/flask/attachments/20150919/60de0cc8/attachment.html>


More information about the Flask mailing list