django-orchestra/orchestra/permissions/auth.py

49 lines
1.4 KiB
Python
Raw Normal View History

2014-05-08 16:59:35 +00:00
from django.contrib.auth.backends import ModelBackend
from django.db.models.loading import get_model, get_app, get_models
class OrchestraPermissionBackend(ModelBackend):
supports_object_permissions = True
supports_anonymous_user = False
supports_inactive_user = False
def has_perm(self, user, perm, obj=None):
""" perm 'app.action_model' """
if not user.is_active:
return False
perm_type = perm.split('.')[1].split('_')[0]
if obj is None:
app_label = perm.split('.')[0]
model_label = perm.split('_')[1]
model = get_model(app_label, model_label)
perm_manager = model
else:
perm_manager = obj
try:
is_authorized = perm_manager.has_permission(user, perm_type)
except AttributeError:
is_authorized = False
return is_authorized
def has_module_perms(self, user, app_label):
"""
Returns True if user_obj has any permissions in the given app_label.
"""
if not user.is_active:
return False
app = get_app(app_label)
for model in get_models(app):
try:
has_perm = model.has_permission.view(user)
except AttributeError:
pass
else:
if has_perm:
return True
return False