Code review comment for lp:~leonardr/launchpad/publish-tokens-2
Revision history for this message
| Guilherme Salgado (salgado) wrote | # |
review:
Needs Information
(code)
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
And here's another follow up review: http://
+class OAuthTokenBase(
+ """Base implementation of code to check an OAuth-signed request."""
I'd change that docstring to say just that this is a base class for OAuthToken classes, as we may want to add code not related to signature checking here in the future.
+
+ def checkSignature(
+ return check_oauth_
And here you should add a docstring pointing to the interface where the method is defined.
-Now consider a principal authorized to create OAuth tokens. Whenever
-it's not creating OAuth tokens, it has a level of permission
-equivalent to READ_PUBLIC.
+A principal with the GRANT_PERMISSIONS authorization level has a of
+permission equivalent to WRITE_PRIVATE.
Why is the permission changing in this incremental diff? Also, s/of//?
- >>> access_token = token.createAcc
+ >>> access_token = removeSecurityP
Why do you need to remove the security proxy now?