a.models中随意增加 meta类
class School(models.Model):
name=models.CharField(max_length=32,unique=True)
city=models.CharField(max_length=32)
addr=models.CharField(max_length=32)
def __str__(self):
return self.name
class Meta:
permissions=(('can_see_schoolsDetail',U'查看学校的详细信息'),)

b.新建一个promission.py

from django.core.urlresolvers import resolve
from django.shortcuts import render,redirect

# 第一个参数是权限名称 permissions=(('can_see_schoolsDetail',U'查看学校的详细信息'),)
# 第二个参数是urls的别称 url(r'^schoolsDetail/(\d+)',views.schoolsDetail,name='school_detail'),
# 第三个参数是请求方法及其请求方法
perm_dic = {
# 'can_see_schoolsDetail': ['school_detail','POST',[]],
'can_see_schoolsDetail': ['school_detail','GET',[]],
'view_customer_info': ['customer_detail','GET',[]],
'edit_own_customer_info': ['customer_detail','POST',['qq','name']],
}


def perm_check(*args,**kwargs):
request = args[0]
url_resovle_obj = resolve(request.path_info)
current_url_namespace = url_resovle_obj.url_name
#app_name = url_resovle_obj.app_name #use this name later
print("url namespace:",current_url_namespace)
matched_flag = False # find matched perm item
matched_perm_key = None
if current_url_namespace is not None:#if didn't set the url namespace, permission doesn't work
print("find perm...")
for perm_key in perm_dic:
perm_val = perm_dic[perm_key]
if len(perm_val) == 3:#otherwise invalid perm data format
url_namespace,request_method,request_args = perm_val
print(url_namespace,current_url_namespace)
if url_namespace == current_url_namespace: #matched the url
if request.method == request_method:#matched request method
if not request_args:#if empty , pass
matched_flag = True
matched_perm_key = perm_key
print('mtched...')
break #no need looking for other perms
else:
for request_arg in request_args: #might has many args
request_method_func = getattr(request,request_method) #get or post mostly
#print("----->>>",request_method_func.get(request_arg))
if request_method_func.get(request_arg) is not None:
matched_flag = True # the arg in set in perm item must be provided in request data
else:
matched_flag = False
print("request arg [%s] not matched" % request_arg)
break #no need go further
if matched_flag == True: # means passed permission check ,no need check others
print("--passed permission check--")
matched_perm_key = perm_key
break

else:#permission doesn't work
return True

if matched_flag == True:
#pass permission check
perm_str = "app1.%s" %(matched_perm_key)
if request.user.has_perm(perm_str):
print("\033[42;1m--------passed permission check----\033[0m")
return True
else:
print("\033[41;1m ----- no permission ----\033[0m")
print(request.user,perm_str)
return False
else:
print("\033[41;1m ----- no matched permission ----\033[0m")
def check_permission(func):

def wrapper(*args,**kwargs):
print("---start check perms",args[0])
if not perm_check(*args,**kwargs):
return render(args[0],'403.html')
return func(*args,**kwargs)
#print("---done check perms")
return wrapper

posted on 2017-05-29 16:43  mljqqh  阅读(548)  评论(0编辑  收藏  举报