heuzef
/
ecomonde
1
0
Fork 0
Code Releases 0 Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
91 Commits
2 Branches
122 MiB
 
 
 
 
Tree: e02ecc61db
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e02ecc61db'
${ noResults }
ecomonde/ecomonde-venv/lib/python3.4/site-packages/django/contrib/auth/backends.py

161 lines
6.0 KiB
Raw Blame History 

  1. from __future__ import unicode_literals

  2. 

  3. from django.contrib.auth import get_user_model

  4. from django.contrib.auth.models import Permission

  5. 

  6. 

  7. class ModelBackend(object):

  8.     """

  9.     Authenticates against settings.AUTH_USER_MODEL.

  10.     """

  11. 

  12.     def authenticate(self, username=None, password=None, **kwargs):

  13.         UserModel = get_user_model()

  14.         if username is None:

  15.             username = kwargs.get(UserModel.USERNAME_FIELD)

  16.         try:

  17.             user = UserModel._default_manager.get_by_natural_key(username)

  18.             if user.check_password(password):

  19.                 return user

  20.         except UserModel.DoesNotExist:

  21.             # Run the default password hasher once to reduce the timing

  22.             # difference between an existing and a non-existing user (#20760).

  23.             UserModel().set_password(password)

  24. 

  25.     def _get_user_permissions(self, user_obj):

  26.         return user_obj.user_permissions.all()

  27. 

  28.     def _get_group_permissions(self, user_obj):

  29.         user_groups_field = get_user_model()._meta.get_field('groups')

  30.         user_groups_query = 'group__%s' % user_groups_field.related_query_name()

  31.         return Permission.objects.filter(**{user_groups_query: user_obj})

  32. 

  33.     def _get_permissions(self, user_obj, obj, from_name):

  34.         """

  35.         Returns the permissions of `user_obj` from `from_name`. `from_name` can

  36.         be either "group" or "user" to return permissions from

  37.         `_get_group_permissions` or `_get_user_permissions` respectively.

  38.         """

  39.         if not user_obj.is_active or user_obj.is_anonymous() or obj is not None:

  40.             return set()

  41. 

  42.         perm_cache_name = '_%s_perm_cache' % from_name

  43.         if not hasattr(user_obj, perm_cache_name):

  44.             if user_obj.is_superuser:

  45.                 perms = Permission.objects.all()

  46.             else:

  47.                 perms = getattr(self, '_get_%s_permissions' % from_name)(user_obj)

  48.             perms = perms.values_list('content_type__app_label', 'codename').order_by()

  49.             setattr(user_obj, perm_cache_name, set("%s.%s" % (ct, name) for ct, name in perms))

  50.         return getattr(user_obj, perm_cache_name)

  51. 

  52.     def get_user_permissions(self, user_obj, obj=None):

  53.         """

  54.         Returns a set of permission strings the user `user_obj` has from their

  55.         `user_permissions`.

  56.         """

  57.         return self._get_permissions(user_obj, obj, 'user')

  58. 

  59.     def get_group_permissions(self, user_obj, obj=None):

  60.         """

  61.         Returns a set of permission strings the user `user_obj` has from the

  62.         groups they belong.

  63.         """

  64.         return self._get_permissions(user_obj, obj, 'group')

  65. 

  66.     def get_all_permissions(self, user_obj, obj=None):

  67.         if not user_obj.is_active or user_obj.is_anonymous() or obj is not None:

  68.             return set()

  69.         if not hasattr(user_obj, '_perm_cache'):

  70.             user_obj._perm_cache = self.get_user_permissions(user_obj)

  71.             user_obj._perm_cache.update(self.get_group_permissions(user_obj))

  72.         return user_obj._perm_cache

  73. 

  74.     def has_perm(self, user_obj, perm, obj=None):

  75.         if not user_obj.is_active:

  76.             return False

  77.         return perm in self.get_all_permissions(user_obj, obj)

  78. 

  79.     def has_module_perms(self, user_obj, app_label):

  80.         """

  81.         Returns True if user_obj has any permissions in the given app_label.

  82.         """

  83.         if not user_obj.is_active:

  84.             return False

  85.         for perm in self.get_all_permissions(user_obj):

  86.             if perm[:perm.index('.')] == app_label:

  87.                 return True

  88.         return False

  89. 

  90.     def get_user(self, user_id):

  91.         UserModel = get_user_model()

  92.         try:

  93.             return UserModel._default_manager.get(pk=user_id)

  94.         except UserModel.DoesNotExist:

  95.             return None

  96. 

  97. 

  98. class RemoteUserBackend(ModelBackend):

  99.     """

  100.     This backend is to be used in conjunction with the ``RemoteUserMiddleware``

  101.     found in the middleware module of this package, and is used when the server

  102.     is handling authentication outside of Django.

  103. 

  104.     By default, the ``authenticate`` method creates ``User`` objects for

  105.     usernames that don't already exist in the database.  Subclasses can disable

  106.     this behavior by setting the ``create_unknown_user`` attribute to

  107.     ``False``.

  108.     """

  109. 

  110.     # Create a User object if not already in the database?

  111.     create_unknown_user = True

  112. 

  113.     def authenticate(self, remote_user):

  114.         """

  115.         The username passed as ``remote_user`` is considered trusted.  This

  116.         method simply returns the ``User`` object with the given username,

  117.         creating a new ``User`` object if ``create_unknown_user`` is ``True``.

  118. 

  119.         Returns None if ``create_unknown_user`` is ``False`` and a ``User``

  120.         object with the given username is not found in the database.

  121.         """

  122.         if not remote_user:

  123.             return

  124.         user = None

  125.         username = self.clean_username(remote_user)

  126. 

  127.         UserModel = get_user_model()

  128. 

  129.         # Note that this could be accomplished in one try-except clause, but

  130.         # instead we use get_or_create when creating unknown users since it has

  131.         # built-in safeguards for multiple threads.

  132.         if self.create_unknown_user:

  133.             user, created = UserModel._default_manager.get_or_create(**{

  134.                 UserModel.USERNAME_FIELD: username

  135.             })

  136.             if created:

  137.                 user = self.configure_user(user)

  138.         else:

  139.             try:

  140.                 user = UserModel._default_manager.get_by_natural_key(username)

  141.             except UserModel.DoesNotExist:

  142.                 pass

  143.         return user

  144. 

  145.     def clean_username(self, username):

  146.         """

  147.         Performs any cleaning on the "username" prior to using it to get or

  148.         create the user object.  Returns the cleaned username.

  149. 

  150.         By default, returns the username unchanged.

  151.         """

  152.         return username

  153. 

  154.     def configure_user(self, user):

  155.         """

  156.         Configures a user after creation and returns the updated user.

  157. 

  158.         By default, returns the user unmodified.

  159.         """

  160.         return user