Permissions redesign (#2149)

API changes: - Cogs must now inherit from `commands.Cog` (see #2151 for discussion and more details) - All functions which are not decorators in the `redbot.core.checks` module are now deprecated in favour of their counterparts in `redbot.core.utils.mod`. This is to make this module more consistent and end the confusing naming convention. - `redbot.core.checks.check_overrides` function is now gone, overrideable checks can now be created with the `@commands.permissions_check` decorator - Command, Group, Cog and Context have some new attributes and methods, but they are for internal use so shouldn't concern cog creators (unless they're making a permissions cog!). - `__permissions_check_before` and `__permissions_check_after` have been replaced: A cog method named `__permissions_hook` will be evaluated as permissions hooks in the same way `__permissions_check_before` previously was. Permissions hooks can also be added/removed/verified through the new `*_permissions_hook()` methods on the bot object, and they will be verified even when permissions is unloaded. - New utility method `redbot.core.utils.chat_formatting.humanize_list` - New dependency [`schema`](https://github.com/keleshev/schema) User-facing changes: - When a `@bot_has_permissions` check fails, the bot will respond saying what permissions were actually missing. - All YAML-related `[p]permissions` subcommands now reside under the `[p]permissions acl` sub-group (tbh I still think the whole cog has too many top-level commands) - The YAML schema for these commands has been changed - A rule cannot be set as allow and deny at the same time (previously this would just default to allow) Documentation: - New documentation for `redbot.core.commands.requires` and `redbot.core.checks` modules - Renewed documentation for the permissions cog - `sphinx.ext.doctest` is now enabled Note: standard discord.py checks will still behave exactly the same way, in fact they are checked before `Requires` is looked at, so they are not overrideable. Signed-off-by: Toby Harradine <tobyharradine@gmail.com>
2025-11-20 18:06:08 -05:00 · 2018-10-01 13:19:25 +10:00
parent f07b78bd0d
commit 0870403299
53 changed files with 2026 additions and 1044 deletions
--- a/redbot/core/checks.py
+++ b/redbot/core/checks.py
@@ -1,126 +1,77 @@
+import warnings
+from typing import Awaitable, TYPE_CHECKING, Dict
+
 import discord
-from redbot.core import commands
+
+from .commands import (
+    bot_has_permissions,
+    has_permissions,
+    is_owner,
+    guildowner,
+    guildowner_or_permissions,
+    admin,
+    admin_or_permissions,
+    mod,
+    mod_or_permissions,
+    check as _check_decorator,
+)
+from .utils.mod import (
+    is_mod_or_superior as _is_mod_or_superior,
+    is_admin_or_superior as _is_admin_or_superior,
+    check_permissions as _check_permissions,
+)
+
+if TYPE_CHECKING:
+    from .bot import Red
+    from .commands import Context
+
+__all__ = [
+    "bot_has_permissions",
+    "has_permissions",
+    "is_owner",
+    "guildowner",
+    "guildowner_or_permissions",
+    "admin",
+    "admin_or_permissions",
+    "mod",
+    "mod_or_permissions",
+    "is_mod_or_superior",
+    "is_admin_or_superior",
+    "bot_in_a_guild",
+    "check_permissions",
+]


-async def check_overrides(ctx, *, level):
-    if await ctx.bot.is_owner(ctx.author):
-        return True
-    perm_cog = ctx.bot.get_cog("Permissions")
-    if not perm_cog or ctx.cog == perm_cog:
-        return None
-    # don't break if someone loaded a cog named
-    # permissions that doesn't implement this
-    func = getattr(perm_cog, "check_overrides", None)
-    val = None if func is None else await func(ctx, level)
-    return val
+def bot_in_a_guild():
+    """Deny the command if the bot is not in a guild."""

-
-def is_owner(**kwargs):
-    async def check(ctx):
-        return await ctx.bot.is_owner(ctx.author, **kwargs)
-
-    return commands.check(check)
-
-
-async def check_permissions(ctx, perms):
-    if await ctx.bot.is_owner(ctx.author):
-        return True
-    elif not perms:
-        return False
-    resolved = ctx.channel.permissions_for(ctx.author)
-
-    return resolved.administrator or all(
-        getattr(resolved, name, None) == value for name, value in perms.items()
-    )
-
-
-async def is_mod_or_superior(ctx):
-    if ctx.guild is None:
-        return await ctx.bot.is_owner(ctx.author)
-    else:
-        author = ctx.author
-        settings = ctx.bot.db.guild(ctx.guild)
-        mod_role_id = await settings.mod_role()
-        admin_role_id = await settings.admin_role()
-
-        mod_role = discord.utils.get(ctx.guild.roles, id=mod_role_id)
-        admin_role = discord.utils.get(ctx.guild.roles, id=admin_role_id)
-
-        return (
-            await ctx.bot.is_owner(ctx.author)
-            or mod_role in author.roles
-            or admin_role in author.roles
-            or author == ctx.guild.owner
-        )
-
-
-async def is_admin_or_superior(ctx):
-    if ctx.guild is None:
-        return await ctx.bot.is_owner(ctx.author)
-    else:
-        author = ctx.author
-        settings = ctx.bot.db.guild(ctx.guild)
-        admin_role_id = await settings.admin_role()
-        admin_role = discord.utils.get(ctx.guild.roles, id=admin_role_id)
-
-        return (
-            await ctx.bot.is_owner(ctx.author)
-            or admin_role in author.roles
-            or author == ctx.guild.owner
-        )
-
-
-def mod_or_permissions(**perms):
-    async def predicate(ctx):
-        override = await check_overrides(ctx, level="mod")
-        return (
-            override
-            if override is not None
-            else await check_permissions(ctx, perms) or await is_mod_or_superior(ctx)
-        )
-
-    return commands.check(predicate)
-
-
-def admin_or_permissions(**perms):
-    async def predicate(ctx):
-        override = await check_overrides(ctx, level="admin")
-        return (
-            override
-            if override is not None
-            else await check_permissions(ctx, perms) or await is_admin_or_superior(ctx)
-        )
-
-    return commands.check(predicate)
-
-
-def bot_in_a_guild(**kwargs):
    async def predicate(ctx):
        return len(ctx.bot.guilds) > 0

-    return commands.check(predicate)
+    return _check_decorator(predicate)


-def guildowner_or_permissions(**perms):
-    async def predicate(ctx):
-        has_perms_or_is_owner = await check_permissions(ctx, perms)
-        if ctx.guild is None:
-            return has_perms_or_is_owner
-        is_guild_owner = ctx.author == ctx.guild.owner
-
-        override = await check_overrides(ctx, level="guildowner")
-        return override if override is not None else is_guild_owner or has_perms_or_is_owner
-
-    return commands.check(predicate)
+def is_mod_or_superior(bot: "Red", member: discord.Member) -> Awaitable[bool]:
+    warnings.warn(
+        "`redbot.core.checks.is_mod_or_superior` is deprecated and will be removed in a future "
+        "release, please use `redbot.core.utils.mod.is_mod_or_superior` instead.",
+        category=DeprecationWarning,
+    )
+    return _is_mod_or_superior(bot, member)


-def guildowner():
-    return guildowner_or_permissions()
+def is_admin_or_superior(bot: "Red", member: discord.Member) -> Awaitable[bool]:
+    warnings.warn(
+        "`redbot.core.checks.is_admin_or_superior` is deprecated and will be removed in a future "
+        "release, please use `redbot.core.utils.mod.is_admin_or_superior` instead.",
+        category=DeprecationWarning,
+    )
+    return _is_admin_or_superior(bot, member)


-def admin():
-    return admin_or_permissions()
-
-
-def mod():
-    return mod_or_permissions()
+def check_permissions(ctx: "Context", perms: Dict[str, bool]) -> Awaitable[bool]:
+    warnings.warn(
+        "`redbot.core.checks.check_permissions` is deprecated and will be removed in a future "
+        "release, please use `redbot.core.utils.mod.check_permissions`."
+    )
+    return _check_permissions(ctx, perms)