← Back to branch summary

~ubuntu-branches/ubuntu/quantal/python-django/quantal

« back to all changes in this revision

Viewing changes to django/contrib/auth/backends.py

  • Committer: Bazaar Package Importer
  • Author(s): Scott James Remnant, Eddy Mulyono
  • Date: 2008-09-16 12:18:47 UTC
  • mfrom: (1.1.5 upstream) (4.1.1 lenny)
  • Revision ID: james.westby@ubuntu.com-20080916121847-mg225rg5mnsdqzr0
Tags: 1.0-1ubuntu1
https://launchpad.net/bugs/264191
* Merge from Debian (LP: #264191), remaining changes:
  - Run test suite on build.

[Eddy Mulyono]
* Update patch to workaround network test case failures.

Show diffs side-by-side

added added

removed removed

Lines of Context:
django/contrib/auth/backends.py
 
1
try:
 
2
    set
 
3
except NameError:
 
4
    from sets import Set as set # Python 2.3 fallback
 
5
 
 
6
from django.db import connection
1
7
from django.contrib.auth.models import User
2
8
 
3
 
class ModelBackend:
 
9
 
 
10
class ModelBackend(object):
4
11
    """
5
 
    Authenticate against django.contrib.auth.models.User
 
12
    Authenticates against django.contrib.auth.models.User.
6
13
    """
7
14
    # TODO: Model, login attribute name and password attribute name should be
8
15
    # configurable.
14
21
        except User.DoesNotExist:
15
22
            return None
16
23
 
 
24
    def get_group_permissions(self, user_obj):
 
25
        """
 
26
        Returns a set of permission strings that this user has through his/her
 
27
        groups.
 
28
        """
 
29
        if not hasattr(user_obj, '_group_perm_cache'):
 
30
            cursor = connection.cursor()
 
31
            # The SQL below works out to the following, after DB quoting:
 
32
            # cursor.execute("""
 
33
            #     SELECT ct."app_label", p."codename"
 
34
            #     FROM "auth_permission" p, "auth_group_permissions" gp, "auth_user_groups" ug, "django_content_type" ct
 
35
            #     WHERE p."id" = gp."permission_id"
 
36
            #         AND gp."group_id" = ug."group_id"
 
37
            #         AND ct."id" = p."content_type_id"
 
38
            #         AND ug."user_id" = %s, [self.id])
 
39
            qn = connection.ops.quote_name
 
40
            sql = """
 
41
                SELECT ct.%s, p.%s
 
42
                FROM %s p, %s gp, %s ug, %s ct
 
43
                WHERE p.%s = gp.%s
 
44
                    AND gp.%s = ug.%s
 
45
                    AND ct.%s = p.%s
 
46
                    AND ug.%s = %%s""" % (
 
47
                qn('app_label'), qn('codename'),
 
48
                qn('auth_permission'), qn('auth_group_permissions'),
 
49
                qn('auth_user_groups'), qn('django_content_type'),
 
50
                qn('id'), qn('permission_id'),
 
51
                qn('group_id'), qn('group_id'),
 
52
                qn('id'), qn('content_type_id'),
 
53
                qn('user_id'),)
 
54
            cursor.execute(sql, [user_obj.id])
 
55
            user_obj._group_perm_cache = set(["%s.%s" % (row[0], row[1]) for row in cursor.fetchall()])
 
56
        return user_obj._group_perm_cache
 
57
 
 
58
    def get_all_permissions(self, user_obj):
 
59
        if not hasattr(user_obj, '_perm_cache'):
 
60
            user_obj._perm_cache = set([u"%s.%s" % (p.content_type.app_label, p.codename) for p in user_obj.user_permissions.select_related()])
 
61
            user_obj._perm_cache.update(self.get_group_permissions(user_obj))
 
62
        return user_obj._perm_cache
 
63
 
 
64
    def has_perm(self, user_obj, perm):
 
65
        return perm in self.get_all_permissions(user_obj)
 
66
 
 
67
    def has_module_perms(self, user_obj, app_label):
 
68
        """
 
69
        Returns True if user_obj has any permissions in the given app_label.
 
70
        """
 
71
        for perm in self.get_all_permissions(user_obj):
 
72
            if perm[:perm.index('.')] == app_label:
 
73
                return True
 
74
        return False
 
75
 
17
76
    def get_user(self, user_id):
18
77
        try:
19
78
            return User.objects.get(pk=user_id)