refactor: replace enforcer import with custom enforcer

BryanttV · BryanttV · commit e9165edc5ee1 · 2025-09-09T09:05:09.000-05:00
diff --git a/openedx_authz/apps.py b/openedx_authz/apps.py
@@ -47,9 +47,10 @@ def ready(self):
         """
         # pylint: disable=import-outside-toplevel
         from django.contrib.auth import get_user_model
-        from dauthz.core import enforcer
 
-        enforcer.enable_auto_save(True)
+        from openedx_authz.custom_enforcer import get_enforcer
+
+        enforcer = get_enforcer()
 
         # Add minimum policies for anonymous users
         anonymous_policies = [
@@ -68,8 +69,6 @@ def ready(self):
             if not enforcer.has_policy("anonymous", resource, action):
                 enforcer.add_policy("anonymous", resource, action)
 
-        print("\n\nAdded minimum policies for anonymous users!")
-
         # Ensure admin users have access to all resources
         User = get_user_model()
 
@@ -78,4 +77,4 @@ def ready(self):
         for user in admin_users:
             enforcer.add_role_for_user(user.username, "admin")
 
-        print("Added admin users to the authorization policy!\n\n")
+        print("\n\nAdded default policies!\n\n")
diff --git a/openedx_authz/custom_enforcer.py b/openedx_authz/custom_enforcer.py
@@ -0,0 +1,27 @@
+"""
+Enforcer instance for openedx_authz.
+"""
+
+from dauthz.core import enforcer
+from redis_watcher import WatcherOptions, new_watcher
+
+
+def callback_function(event):
+    """
+    Callback function for the enforcer.
+    """
+    print("\n\nUpdate for remove filtered policy callback, event: {}".format(event))
+
+
+def get_enforcer():
+    """
+    Get the enforcer instance.
+    """
+    enforcer.enable_auto_save(True)
+    watcher_options = WatcherOptions()
+    watcher_options.host = "redis"
+    watcher_options.port = 6379
+    watcher_options.optional_update_callback = callback_function
+    watcher = new_watcher(watcher_options)
+    enforcer.set_watcher(watcher)
+    return enforcer
diff --git a/openedx_authz/views.py b/openedx_authz/views.py
@@ -2,15 +2,16 @@
 Views for openedx_authz DRF API.
 """
 
-from dauthz.core import enforcer
 from django.shortcuts import get_object_or_404
 from rest_framework import status, viewsets
 from rest_framework.response import Response
 
+from openedx_authz.custom_enforcer import get_enforcer
+
 from .models import Library
 from .serializers import LibrarySerializer
 
-enforcer.enable_auto_save(True)
+enforcer = get_enforcer()
 
 
 class LibraryViewSet(viewsets.ViewSet):
