e744336385
C-6: ConnectorRuntime enforces capability_mask per operation.
READ-only ACs cannot invoke MUTATE operations (wipe, lock, retire).
C-7: AC validated against database (exists, active, not expired)
before connector invocation.
C-9: Delegated AC capability bounded by delegator's capability.
C-10: Command counter uses atomic SQL increment with limit check.
M-23: expire_stale() uses same atomic SQL pattern.
H-1: Sensitive credential fields hidden from repr/logs via repr=False.
H-2: Stub backend requires ALLOW_STUB_CREDENTIALS=true to activate.
H-3: Kerberos backend raises CredentialResolutionError instead of
returning stub ticket.
H-4: Chronicle INTENT emitted before execution, RESULT after.
H-5: device_id validated as UUID before Graph API URL interpolation.
H-8: ConnectorRuntime enforces governance for all connector invocations.
Signed-off-by: Tyler King <tking@guildhouse.dev>
18 lines
637 B
Python
18 lines
637 B
Python
from contextlib import AsyncExitStack
|
|
|
|
from starlette.types import ASGIApp, Receive, Scope, Send
|
|
|
|
|
|
# Used mainly to close files after the request is done, dependencies are closed
|
|
# in their own AsyncExitStack
|
|
class AsyncExitStackMiddleware:
|
|
def __init__(
|
|
self, app: ASGIApp, context_name: str = "fastapi_middleware_astack"
|
|
) -> None:
|
|
self.app = app
|
|
self.context_name = context_name
|
|
|
|
async def __call__(self, scope: Scope, receive: Receive, send: Send) -> None:
|
|
async with AsyncExitStack() as stack:
|
|
scope[self.context_name] = stack
|
|
await self.app(scope, receive, send)
|