Professional Documents
Culture Documents
1 of 4
https://pypi.python.org/pypi/django-object-permission/0.5.2
django-object-permission 0.5.2
Add object specific permission for particualr User/Group, All authenticated user or Anonymous
user
Download
django-object-permission-0.5.2.tar.gz
Install
sudo pip install django-object-permission
or:
sudo pip install git+git://github.com/lambdalisue/django-object-permission.git#egg=django-object-permission
How to Use
1. Append object_permission to INSTALLED_APPS
2. Append object_permission.backends.ObjectPermBackend to AUTHENTICATION_BACKENDS
3. Add ophandler.py to your app directory like admin.py
4. Write model specific ObjectPermHandler and register it with model to object_permission.site
See object_permission_test for more detail. If you want to see Old-style storategy, see README_old.rst or
object_permission_test_deprecated
ophandler.py:
from object_permission import site
# AuthorObjectPermHandler need 'django-observer' and required 'author'
# field (the author field is automatically added by 'with_author' decorator)
from object_permission.handlers import ObjectPermHandler
from models import Entry
class EntryObjectPermHandler(ObjectPermHandler):
"""ObjectPermHandler for model which has author field
This handler contribute..
1.
2.
3.
5/21/2015 7:17 PM
2 of 4
https://pypi.python.org/pypi/django-object-permission/0.5.2
"""
author_field = 'author'
reject_anonymous = False
def get_author(self):
"""get author field value"""
return getattr(self.instance, self.author_field)
def setup(self):
# watch author field
self.watch(self.author_field)
def updated(self, attr):
# Author has full access
self.manager(self.get_author())
# Authenticated user can view
self.viewer(None)
if self.reject_anonymous:
self.reject('anonymous')
else:
self.viewer('anonymous')
# Register to object_permission site like django.contrib.admin
site.register(Entry, EntryObjectPermHandler)
views.py:
from
from
from
from
from
from
index.html:
{% load object_permission_tags %}
<html>
<head>
5/21/2015 7:17 PM
https://pypi.python.org/pypi/django-object-permission/0.5.2
<title>django-object-permission example</title>
</head>
<body>
{% pif 'blog.add_entry' of None or 'blog.change_entry' of object or 'blog.delete_entry' of object %}
<!-- displayed only user who has `blog.add_entry` permission,
`blog.change_entry` permision for object or
`blog.delete_entry` permission for object -->
<h2>Toolbox</h2>
{% pif 'blog.add_entry' of object %}
<!-- displayed only user who has `blog.add_entry` permission -->
<a href="{% url 'blog-entry-create' %}">Add New Entry</a>
{% endpif %}
{% pif object and 'blog.change_entry' of object %}
<!-- displayed only user who has `blog.change_entry` permission for object -->
<a href="{% url 'blog-entry-update' object.pk %}">Change this entry</a>
{% endpif %}
{% pif object and 'blog.delete_entry' of object %}
<!-- displayed only user who has `blog.delete_entry` permission for object -->
<a href="{% url 'blog-entry-delete' object.pk %}">Delete this entry</a>
{% endpif%}
{% endpif %}
</body>
</html>
Settings
OBJECT_PERMISSION_EXTRA_DEFAULT_PERMISSIONS
A list of extra default permission for all models. Django contribute add, change and delete permission for all models as
default.
Default: ['view']
OBJECT_PERMISSION_BUILTIN_TEMPLATETAGS
If this is True, then pif will be builtin templatetags which mean you dont need to add {% load
object_permission_tags %} before use pif tag.
Default: True
OBJECT_PERMISSION_AUTODISCOVER
To enable autodiscover feature. object permission automatically search ophandler (or
OBJECT_PERMISSION_HANDLER_MODULE_NAME) module for each apps and load.
Default: True
OBJECT_PERMISSION_HANDLER_MODULE_NAME
Used for searching object permission handler module for each apps.
Default: 'ophandler'
OBJECT_PERMISSION_DEPRECATED
If this is True then all deprecated feature is loaded. You should not turnd on this unless your project is too large to do
refactaring because deprecated feature is no longer supported and limited.
will removed in version 0.5
OBJECT_PERMISSION_MODIFY_FUNCTION (deprecated)
set the name of function when object is saved for modify object permission for the object. the default value is
modify_object_permission
OBJECT_PERMISSION_MODIFY_M2M_FUNCTION (deprecated)
set the name of function when objects ManyToMany relation is updated for modify object permission for the object. the
default value is modify_object_permission_m2m
File
3 of 4
Type
Py Version
Uploaded on
Size
5/21/2015 7:17 PM
django-object-permission-0.5.2.tar.gz (md5)
https://pypi.python.org/pypi/django-object-permission/0.5.2
Source
2012-02-28
37KB
4 of 4
5/21/2015 7:17 PM