blinkster: web/lib/django/contrib/auth/decorators.py@c00932a80c14 (annotated)

0 0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	1	try:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	2	from functools import update_wrapper
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	3	except ImportError:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	4	from django.utils.functional import update_wrapper # Python 2.3, 2.4 fallback.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	5
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	6	from django.contrib.auth import REDIRECT_FIELD_NAME
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	7	from django.http import HttpResponseRedirect
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	8	from django.utils.http import urlquote
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	9
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	10	def user_passes_test(test_func, login_url=None, redirect_field_name=REDIRECT_FIELD_NAME):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	11	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	12	Decorator for views that checks that the user passes the given test,
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	13	redirecting to the log-in page if necessary. The test should be a callable
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	14	that takes the user object and returns True if the user passes.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	15	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	16	def decorate(view_func):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	17	return _CheckLogin(view_func, test_func, login_url, redirect_field_name)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	18	return decorate
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	19
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	20	def login_required(function=None, redirect_field_name=REDIRECT_FIELD_NAME):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	21	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	22	Decorator for views that checks that the user is logged in, redirecting
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	23	to the log-in page if necessary.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	24	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	25	actual_decorator = user_passes_test(
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	26	lambda u: u.is_authenticated(),
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	27	redirect_field_name=redirect_field_name
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	28	)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	29	if function:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	30	return actual_decorator(function)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	31	return actual_decorator
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	32
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	33	def permission_required(perm, login_url=None):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	34	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	35	Decorator for views that checks whether a user has a particular permission
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	36	enabled, redirecting to the log-in page if necessary.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	37	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	38	return user_passes_test(lambda u: u.has_perm(perm), login_url=login_url)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	39
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	40	class _CheckLogin(object):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	41	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	42	Class that checks that the user passes the given test, redirecting to
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	43	the log-in page if necessary. If the test is passed, the view function
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	44	is invoked. The test should be a callable that takes the user object
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	45	and returns True if the user passes.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	46
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	47	We use a class here so that we can define __get__. This way, when a
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	48	_CheckLogin object is used as a method decorator, the view function
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	49	is properly bound to its instance.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	50	"""
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	51	def __init__(self, view_func, test_func, login_url=None, redirect_field_name=REDIRECT_FIELD_NAME):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	52	if not login_url:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	53	from django.conf import settings
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	54	login_url = settings.LOGIN_URL
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	55	self.view_func = view_func
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	56	self.test_func = test_func
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	57	self.login_url = login_url
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	58	self.redirect_field_name = redirect_field_name
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	59
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	60	# We can't blindly apply update_wrapper because it udpates __dict__ and
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	61	# if the view function is already a _CheckLogin object then
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	62	# self.test_func and friends will get stomped. However, we also can't
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	63	# not update the wrapper's dict because then view function attributes
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	64	# don't get updated into the wrapper. So we need to split the
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	65	# difference: don't let update_wrapper update __dict__, but then update
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	66	# the (parts of) __dict__ that we care about ourselves.
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	67	update_wrapper(self, view_func, updated=())
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	68	for k in view_func.__dict__:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	69	if k not in self.__dict__:
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	70	self.__dict__[k] = view_func.__dict__[k]
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	71
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	72	def __get__(self, obj, cls=None):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	73	view_func = self.view_func.__get__(obj, cls)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	74	return _CheckLogin(view_func, self.test_func, self.login_url, self.redirect_field_name)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	75
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	76	def __call__(self, request, args, *kwargs):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	77	if self.test_func(request.user):
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	78	return self.view_func(request, args, *kwargs)
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	79	path = urlquote(request.get_full_path())
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	80	tup = self.login_url, self.redirect_field_name, path
0d40e90630ef Blinkster creation ymh <ymh.work@gmail.com> parents: diff changeset	81	return HttpResponseRedirect('%s?%s=%s' % tup)

author	ymh <ymh.work@gmail.com>
	Wed, 20 Jan 2010 10:58:18 +0100
changeset 2	c00932a80c14
parent 0	0d40e90630ef
child 29	cc9b7e14412b
permissions	-rw-r--r--