Home Explore Help
Register Sign In
dayuan
/
manyi
6
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 34216f9fac
Branches Tags
manyi
/
venv
/
Lib
/
site-packages
/
django
/
contrib
/
auth
/
backends.py

backends.py 5.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136 
  1. from __future__ import unicode_literals
    2. 

  2. from django.contrib.auth import get_user_model
    3. 

  3. from django.contrib.auth.models import Permission
    4. 

  4. 

  5. 

  6. class ModelBackend(object):
    7. 

  7.     """
    8. 

  8.     Authenticates against settings.AUTH_USER_MODEL.
    9. 

  9.     """
    10. 

  10. 

  11.     def authenticate(self, username=None, password=None, **kwargs):
    12. 

  12.         UserModel = get_user_model()
    13. 

  13.         if username is None:
    14. 

  14.             username = kwargs.get(UserModel.USERNAME_FIELD)
    15. 

  15.         try:
    16. 

  16.             user = UserModel._default_manager.get_by_natural_key(username)
    17. 

  17.             if user.check_password(password):
    18. 

  18.                 return user
    19. 

  19.         except UserModel.DoesNotExist:
    20. 

  20.             # Run the default password hasher once to reduce the timing
    21. 

  21.             # difference between an existing and a non-existing user (#20760).
    22. 

  22.             UserModel().set_password(password)
    23. 

  23. 

  24.     def get_group_permissions(self, user_obj, obj=None):
    25. 

  25.         """
    26. 

  26.         Returns a set of permission strings that this user has through his/her
    27. 

  27.         groups.
    28. 

  28.         """
    29. 

  29.         if user_obj.is_anonymous() or obj is not None:
    30. 

  30.             return set()
    31. 

  31.         if not hasattr(user_obj, '_group_perm_cache'):
    32. 

  32.             if user_obj.is_superuser:
    33. 

  33.                 perms = Permission.objects.all()
    34. 

  34.             else:
    35. 

  35.                 user_groups_field = get_user_model()._meta.get_field('groups')
    36. 

  36.                 user_groups_query = 'group__%s' % user_groups_field.related_query_name()
    37. 

  37.                 perms = Permission.objects.filter(**{user_groups_query: user_obj})
    38. 

  38.             perms = perms.values_list('content_type__app_label', 'codename').order_by()
    39. 

  39.             user_obj._group_perm_cache = set("%s.%s" % (ct, name) for ct, name in perms)
    40. 

  40.         return user_obj._group_perm_cache
    41. 

  41. 

  42.     def get_all_permissions(self, user_obj, obj=None):
    43. 

  43.         if user_obj.is_anonymous() or obj is not None:
    44. 

  44.             return set()
    45. 

  45.         if not hasattr(user_obj, '_perm_cache'):
    46. 

  46.             user_obj._perm_cache = set("%s.%s" % (p.content_type.app_label, p.codename) for p in user_obj.user_permissions.select_related())
    47. 

  47.             user_obj._perm_cache.update(self.get_group_permissions(user_obj))
    48. 

  48.         return user_obj._perm_cache
    49. 

  49. 

  50.     def has_perm(self, user_obj, perm, obj=None):
    51. 

  51.         if not user_obj.is_active:
    52. 

  52.             return False
    53. 

  53.         return perm in self.get_all_permissions(user_obj, obj)
    54. 

  54. 

  55.     def has_module_perms(self, user_obj, app_label):
    56. 

  56.         """
    57. 

  57.         Returns True if user_obj has any permissions in the given app_label.
    58. 

  58.         """
    59. 

  59.         if not user_obj.is_active:
    60. 

  60.             return False
    61. 

  61.         for perm in self.get_all_permissions(user_obj):
    62. 

  62.             if perm[:perm.index('.')] == app_label:
    63. 

  63.                 return True
    64. 

  64.         return False
    65. 

  65. 

  66.     def get_user(self, user_id):
    67. 

  67.         UserModel = get_user_model()
    68. 

  68.         try:
    69. 

  69.             return UserModel._default_manager.get(pk=user_id)
    70. 

  70.         except UserModel.DoesNotExist:
    71. 

  71.             return None
    72. 

  72. 

  73. 

  74. class RemoteUserBackend(ModelBackend):
    75. 

  75.     """
    76. 

  76.     This backend is to be used in conjunction with the ``RemoteUserMiddleware``
    77. 

  77.     found in the middleware module of this package, and is used when the server
    78. 

  78.     is handling authentication outside of Django.
    79. 

  79. 

  80.     By default, the ``authenticate`` method creates ``User`` objects for
    81. 

  81.     usernames that don't already exist in the database.  Subclasses can disable
    82. 

  82.     this behavior by setting the ``create_unknown_user`` attribute to
    83. 

  83.     ``False``.
    84. 

  84.     """
    85. 

  85. 

  86.     # Create a User object if not already in the database?
    87. 

  87.     create_unknown_user = True
    88. 

  88. 

  89.     def authenticate(self, remote_user):
    90. 

  90.         """
    91. 

  91.         The username passed as ``remote_user`` is considered trusted.  This
    92. 

  92.         method simply returns the ``User`` object with the given username,
    93. 

  93.         creating a new ``User`` object if ``create_unknown_user`` is ``True``.
    94. 

  94. 

  95.         Returns None if ``create_unknown_user`` is ``False`` and a ``User``
    96. 

  96.         object with the given username is not found in the database.
    97. 

  97.         """
    98. 

  98.         if not remote_user:
    99. 

  99.             return
    100. 

  100.         user = None
    101. 

  101.         username = self.clean_username(remote_user)
    102. 

  102. 

  103.         UserModel = get_user_model()
    104. 

  104. 

  105.         # Note that this could be accomplished in one try-except clause, but
    106. 

  106.         # instead we use get_or_create when creating unknown users since it has
    107. 

  107.         # built-in safeguards for multiple threads.
    108. 

  108.         if self.create_unknown_user:
    109. 

  109.             user, created = UserModel._default_manager.get_or_create(**{
    110. 

  110.                 UserModel.USERNAME_FIELD: username
    111. 

  111.             })
    112. 

  112.             if created:
    113. 

  113.                 user = self.configure_user(user)
    114. 

  114.         else:
    115. 

  115.             try:
    116. 

  116.                 user = UserModel._default_manager.get_by_natural_key(username)
    117. 

  117.             except UserModel.DoesNotExist:
    118. 

  118.                 pass
    119. 

  119.         return user
    120. 

  120. 

  121.     def clean_username(self, username):
    122. 

  122.         """
    123. 

  123.         Performs any cleaning on the "username" prior to using it to get or
    124. 

  124.         create the user object.  Returns the cleaned username.
    125. 

  125. 

  126.         By default, returns the username unchanged.
    127. 

  127.         """
    128. 

  128.         return username
    129. 

  129. 

  130.     def configure_user(self, user):
    131. 

  131.         """
    132. 

  132.         Configures a user after creation and returns the updated user.
    133. 

  133. 

  134.         By default, returns the user unmodified.
    135. 

  135.         """
    136. 

  136.         return user
    137.