Hopiu/django-authority
1
0
Fork 0
mirror of https://github.com/jazzband/django-authority.git synced 2026-04-15 12:30:58 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
django-authority/authority/decorators.py
Jannis Leidel 71eee85b85 Moved authority app from src/ to root directory 
--HG--
rename : src/authority/__init__.py => authority/__init__.py
rename : src/authority/admin.py => authority/admin.py
rename : src/authority/decorators.py => authority/decorators.py
rename : src/authority/exceptions.py => authority/exceptions.py
rename : src/authority/fixtures/tests.json => authority/fixtures/tests.json
rename : src/authority/forms.py => authority/forms.py
rename : src/authority/managers.py => authority/managers.py
rename : src/authority/models.py => authority/models.py
rename : src/authority/permissions.py => authority/permissions.py
rename : src/authority/sites.py => authority/sites.py
rename : src/authority/templates/admin/edit_inline/action_tabular.html => authority/templates/admin/edit_inline/action_tabular.html
rename : src/authority/templates/admin/permission_change_form.html => authority/templates/admin/permission_change_form.html
rename : src/authority/templates/authority/403.html => authority/templates/authority/403.html
rename : src/authority/templates/authority/permission_delete_link.html => authority/templates/authority/permission_delete_link.html
rename : src/authority/templates/authority/permission_form.html => authority/templates/authority/permission_form.html
rename : src/authority/templates/authority/permission_request_approve_link.html => authority/templates/authority/permission_request_approve_link.html
rename : src/authority/templates/authority/permission_request_delete_link.html => authority/templates/authority/permission_request_delete_link.html
rename : src/authority/templatetags/__init__.py => authority/templatetags/__init__.py
rename : src/authority/templatetags/permissions.py => authority/templatetags/permissions.py
rename : src/authority/tests.py => authority/tests.py
rename : src/authority/urls.py => authority/urls.py
rename : src/authority/views.py => authority/views.py
rename : src/authority/widgets.py => authority/widgets.py
2010-01-07 18:00:41 +01:00

69 lines
3.2 KiB
Python
Raw Blame History

import inspect
from django.http import HttpResponseRedirect
from django.utils.http import urlquote
from django.utils.functional import wraps
from django.db.models import Model, get_model
from django.shortcuts import get_object_or_404
from django.conf import settings
from django.contrib.auth import REDIRECT_FIELD_NAME
from authority import get_check
from authority.views import permission_denied
def permission_required(perm, *lookup_variables, **kwargs):
"""
Decorator for views that checks whether a user has a particular permission
enabled, redirecting to the log-in page if necessary.
"""
login_url = kwargs.pop('login_url', settings.LOGIN_URL)
redirect_field_name = kwargs.pop('redirect_field_name', REDIRECT_FIELD_NAME)
redirect_to_login = kwargs.pop('redirect_to_login', True)
def decorate(view_func):
def decorated(request, *args, **kwargs):
if request.user.is_authenticated():
params = []
for lookup_variable in lookup_variables:
if isinstance(lookup_variable, basestring):
value = kwargs.get(lookup_variable, None)
if value is None:
continue
params.append(value)
elif isinstance(lookup_variable, (tuple, list)):
model, lookup, varname = lookup_variable
value = kwargs.get(varname, None)
if value is None:
continue
if isinstance(model, basestring):
model_class = get_model(*model.split("."))
else:
model_class = model
if model_class is None:
raise ValueError(
"The given argument '%s' is not a valid model." % model)
if (inspect.isclass(model_class) and
not issubclass(model_class, Model)):
raise ValueError(
'The argument %s needs to be a model.' % model)
obj = get_object_or_404(model_class, **{lookup: value})
params.append(obj)
check = get_check(request.user, perm)
granted = False
if check is not None:
granted = check(*params)
if granted or request.user.has_perm(perm):
return view_func(request, *args, **kwargs)
if redirect_to_login:
path = urlquote(request.get_full_path())
tup = login_url, redirect_field_name, path
return HttpResponseRedirect('%s?%s=%s' % tup)
return permission_denied(request)
return wraps(view_func)(decorated)
return decorate
def permission_required_or_403(perm, *args, **kwargs):
"""
Decorator that wraps the permission_required decorator and returns a
permission denied (403) page instead of redirecting to the login URL.
"""
kwargs['redirect_to_login'] = False
return permission_required(perm, *args, **kwargs)
Reference in a new issue View git blame Copy permalink