Allow multiple roles for Identity.authorize

yhttp · Nov 20, 2021 · 16573e6 · 16573e6
1 parent 907264a
commit 16573e6
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/yhttp/ext/auth/__init__.py b/yhttp/ext/auth/__init__.py
@@ -2,4 +2,4 @@
 from .install import install
 from .authentication import Authenticator
 
-__version__ = '3.6.0'
+__version__ = '3.7.0'
diff --git a/yhttp/ext/auth/authentication.py b/yhttp/ext/auth/authentication.py
@@ -24,7 +24,7 @@ def __getattr__(self, attr):
         except KeyError:
             raise AttributeError()
 
-    def authorize(self, roles):
+    def authorize(self, *roles):
         if 'roles' not in self.payload:
             raise statuses.forbidden()
 
@@ -390,7 +390,7 @@ def decorator(handler):
         def wrapper(req, *args, **kw):
             req.identity = app.auth.verify_token(req)
             if roles is not None:
-                req.identity.authorize(roles)
+                req.identity.authorize(*roles)
 
             return handler(req, *args, **kw)