forked from tableau/server-client-python
-
Notifications
You must be signed in to change notification settings - Fork 0
/
query_permissions.py
78 lines (64 loc) · 2.86 KB
/
query_permissions.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
####
# This script demonstrates how to query for permissions using TSC
# To run the script, you must have installed Python 3.7 or later.
#
# Example usage: 'python query_permissions.py -s https://10ax.online.tableau.com --site
# devSite123 -u tabby@tableau.com workbook b4065286-80f0-11ea-af1b-cb7191f48e45'
####
import argparse
import logging
import tableauserverclient as TSC
def main():
parser = argparse.ArgumentParser(description="Query permissions of a given resource.")
# Common options; please keep those in sync across all samples
parser.add_argument("--server", "-s", required=True, help="server address")
parser.add_argument("--site", "-S", help="site name")
parser.add_argument(
"--token-name", "-p", required=True, help="name of the personal access token used to sign into the server"
)
parser.add_argument(
"--token-value", "-v", required=True, help="value of the personal access token used to sign into the server"
)
parser.add_argument(
"--logging-level",
"-l",
choices=["debug", "info", "error"],
default="error",
help="desired logging level (set to error by default)",
)
# Options specific to this sample
parser.add_argument("resource_type", choices=["workbook", "datasource", "flow", "table", "database"])
parser.add_argument("resource_id")
args = parser.parse_args()
# Set logging level based on user input, or error by default
logging_level = getattr(logging, args.logging_level.upper())
logging.basicConfig(level=logging_level)
# Sign in
tableau_auth = TSC.PersonalAccessTokenAuth(args.token_name, args.token_value, site_id=args.site)
server = TSC.Server(args.server, use_server_version=True)
with server.auth.sign_in(tableau_auth):
# Mapping to grab the handler for the user-inputted resource type
endpoint = {
"workbook": server.workbooks,
"datasource": server.datasources,
"flow": server.flows,
"table": server.tables,
"database": server.databases,
}.get(args.resource_type)
# Get the resource by its ID
resource = endpoint.get_by_id(args.resource_id)
# Populate permissions for the resource
endpoint.populate_permissions(resource)
permissions = resource.permissions
# Print result
print(
"\n{0} permission rule(s) found for {1} {2}.".format(len(permissions), args.resource_type, args.resource_id)
)
for permission in permissions:
grantee = permission.grantee
capabilities = permission.capabilities
print("\nCapabilities for {0} {1}:".format(grantee.tag_name, grantee.id))
for capability in capabilities:
print("\t{0} - {1}".format(capability, capabilities[capability]))
if __name__ == "__main__":
main()