U Ha!@sddlmZddlmZddlmZmZmZeZGdddZ Gddde Z Gdd d e Z Gd d d e Z Gd d d e Z dS))get_user_model) Permission)ExistsOuterRefQc@sDeZdZddZddZdddZddd Zdd d Zdd d ZdS) BaseBackendcKsdSN)selfrequestkwargsr r @/tmp/pip-unpacked-wheel-3jxiddxt/django/contrib/auth/backends.py authenticate szBaseBackend.authenticatecCsdSrr )r user_idr r r get_user szBaseBackend.get_userNcCstSrsetr user_objobjr r r get_user_permissionssz BaseBackend.get_user_permissionscCstSrrrr r r get_group_permissionssz!BaseBackend.get_group_permissionscCs|j||d|j||dSN)r)rrrr r r get_all_permissionss  zBaseBackend.get_all_permissionscCs||j||dkSr)rr rpermrr r r has_permszBaseBackend.has_perm)N)N)N)N) __name__ __module__ __qualname__rrrrrrr r r r rs    rcseZdZdZdddZddZddZd d Zd d Zdd dZ dddZ dfdd Z d fdd Z ddZ d!ddZddZZS)" ModelBackendz9 Authenticates against settings.AUTH_USER_MODEL. NcKsx|dkr|tj}|dks$|dkr(dSztj|}Wn"tjk rZt|YnX||rt||rt|SdSr) get UserModelUSERNAME_FIELD_default_managerget_by_natural_key DoesNotExist set_passwordZcheck_passworduser_can_authenticate)r r usernamepasswordr userr r r r$s zModelBackend.authenticatecCst|dd}|p|dkS)z{ Reject users with is_active=False. Custom user models that don't have that attribute are allowed. is_activeN)getattr)r r+r,r r r r(3s z"ModelBackend.user_can_authenticatecCs |jSr)Zuser_permissionsall)r rr r r _get_user_permissions;sz"ModelBackend._get_user_permissionscCs,tjd}d|}tjjf||iS)Ngroupsz group__%s)rZ_meta get_fieldZrelated_query_namerobjectsfilter)r rZuser_groups_fieldZuser_groups_queryr r r _get_group_permissions>s z#ModelBackend._get_group_permissionscCs|jr|js|dk rtSd|}t||sv|jr>tj}nt|d||}| dd }t ||dd|Dt||S)z Return the permissions of `user_obj` from `from_name`. `from_name` can be either "group" or "user" to return permissions from `_get_group_permissions` or `_get_user_permissions` respectively. Nz_%s_perm_cachez_get_%s_permissionscontent_type__app_labelcodenamecSsh|]\}}d||fqS)z%s.%sr ).0ctnamer r r Ssz0ModelBackend._get_permissions..) r, is_anonymousrhasattr is_superuserrr2r.r-Z values_listZorder_bysetattr)r rr from_nameZperm_cache_nameZpermsr r r _get_permissionsCs  zModelBackend._get_permissionscCs|||dS)zs Return a set of permission strings the user `user_obj` has from their `user_permissions`. r+r@rr r r rVsz!ModelBackend.get_user_permissionscCs|||dS)zq Return a set of permission strings the user `user_obj` has from the groups they belong. grouprArr r r r]sz"ModelBackend.get_group_permissionscs8|jr|js|dk rtSt|ds2t||_|jS)N _perm_cache)r,r;rr<superrrCr __class__r r rds  z ModelBackend.get_all_permissionscs|jotj|||dSr)r,rDrrrEr r rkszModelBackend.has_permcs"|jo tfdd||DS)zU Return True if user_obj has any permissions in the given app_label. c3s$|]}|d|dkVqdS)N.)index)r7r app_labelr r rsz0ModelBackend.has_module_perms..)r,anyr)r rrJr rIr has_module_permsnszModelBackend.has_module_permsTc Cst|trThe `perm` argument must be a string or a permission instance.Npk)Z group__user)r+rN)r6r5T)r=)r,) isinstancestrsplit ValueErrorr TypeErrorrr$nonerrrNrr2r3) r rr,Zinclude_superusersrrJr6r"Z permission_qZuser_qr r r with_permws0     zModelBackend.with_permcCs>ztjj|d}Wntjk r*YdSX||r:|SdS)NrO)r"r$r!r&r()r rr+r r r rs zModelBackend.get_user)NN)N)N)N)N)TTN)rrr__doc__rr(r/r4r@rrrrrMrVr __classcell__r r rEr r s    $r c@seZdZddZdS)AllowAllUsersModelBackendcCsdSNTr r r+r r r r(sz/AllowAllUsersModelBackend.user_can_authenticateNrrrr(r r r r rYsrYc@s,eZdZdZdZddZddZddZd S) RemoteUserBackenda This backend is to be used in conjunction with the ``RemoteUserMiddleware`` found in the middleware module of this package, and is used when the server is handling authentication outside of Django. By default, the ``authenticate`` method creates ``User`` objects for usernames that don't already exist in the database. Subclasses can disable this behavior by setting the ``create_unknown_user`` attribute to ``False``. TcCs|sdSd}||}|jrFtjjftj|i\}}|rn|||}n(ztj|}Wntjk rlYnX| |r||SdS)ai The username passed as ``remote_user`` is considered trusted. Return the ``User`` object with the given username. Create a new ``User`` object if ``create_unknown_user`` is ``True``. Return None if ``create_unknown_user`` is ``False`` and a ``User`` object with the given username is not found in the database. N) clean_usernamecreate_unknown_userr"r$Z get_or_creater#configure_userr%r&r()r r Z remote_userr+r)createdr r r rs   zRemoteUserBackend.authenticatecCs|S)z Perform any cleaning on the "username" prior to using it to get or create the user object. Return the cleaned username. By default, return the username unchanged. r )r r)r r r r^sz RemoteUserBackend.clean_usernamecCs|S)z Configure a user after creation and return the updated user. By default, return the user unmodified. r )r r r+r r r r`sz RemoteUserBackend.configure_userN)rrrrWr_rr^r`r r r r r]s   r]c@seZdZddZdS)AllowAllUsersRemoteUserBackendcCsdSrZr r[r r r r(sz4AllowAllUsersRemoteUserBackend.user_can_authenticateNr\r r r r rbsrbN)Zdjango.contrib.authrZdjango.contrib.auth.modelsrZdjango.db.modelsrrrr"rr rYr]rbr r r r s  ?