B CVvg!@sddlmZddlmZddlmZmZmZeZGdddZ Gddde Z Gdd d e Z Gd d d e Z Gd d d e Z dS))get_user_model) Permission)ExistsOuterRefQc@sDeZdZddZddZdddZddd Zdd d Zdd d ZdS) BaseBackendcKsdS)N)selfrequestkwargsrr@/tmp/pip-install-o3oxmrkh/Django/django/contrib/auth/backends.py authenticate szBaseBackend.authenticatecCsdS)Nr)r user_idrrr get_user szBaseBackend.get_userNcCstS)N)set)r user_objobjrrr get_user_permissionssz BaseBackend.get_user_permissionscCstS)N)r)r rrrrr get_group_permissionssz!BaseBackend.get_group_permissionscCs|j||d|j||dS)N)r)rr)r rrrrr get_all_permissionss zBaseBackend.get_all_permissionscCs||j||dkS)N)r)r)r rpermrrrr has_permszBaseBackend.has_perm)N)N)N)N) __name__ __module__ __qualname__r rrrrrrrrr rs    rcseZdZdZdddZddZddZd d Zd d Zdd dZ dddZ dfdd Z d fdd Z ddZ d!ddZddZZS)" ModelBackendz9 Authenticates against settings.AUTH_USER_MODEL. NcKsx|dkr|tj}|dks$|dkr(dSytj|}Wn"tjk rZt|YnX||rt||rt|SdS)N) get UserModelUSERNAME_FIELD_default_managerget_by_natural_key DoesNotExistZ set_passwordZcheck_passworduser_can_authenticate)r r usernamepasswordr userrrr r $s zModelBackend.authenticatecCst|dd}|p|dkS)z{ Reject users with is_active=False. Custom user models that don't have that attribute are allowed. is_activeN)getattr)r r%r&rrr r"3s z"ModelBackend.user_can_authenticatecCs |jS)N)Zuser_permissionsall)r rrrr _get_user_permissions;sz"ModelBackend._get_user_permissionscCs,tjd}d|}tjjf||iS)Ngroupsz group__%s)rZ_meta get_fieldZrelated_query_namerobjectsfilter)r rZuser_groups_fieldZuser_groups_queryrrr _get_group_permissions>s z#ModelBackend._get_group_permissionscCs|jr|js|dk rtSd|}t||sv|jr>tj}nt|d||}| dd }t ||dd|Dt||S)z Return the permissions of `user_obj` from `from_name`. `from_name` can be either "group" or "user" to return permissions from `_get_group_permissions` or `_get_user_permissions` respectively. Nz_%s_perm_cachez_get_%s_permissionscontent_type__app_labelcodenamecSsh|]\}}d||fqS)z%s.%sr).0ctnamerrr Ssz0ModelBackend._get_permissions..) r& is_anonymousrhasattr is_superuserrr,r(r'Z values_listZorder_bysetattr)r rr from_nameZperm_cache_nameZpermsrrr _get_permissionsCs  zModelBackend._get_permissionscCs|||dS)zs Return a set of permission strings the user `user_obj` has from their `user_permissions`. r%)r:)r rrrrr rVsz!ModelBackend.get_user_permissionscCs|||dS)zq Return a set of permission strings the user `user_obj` has from the groups they belong. group)r:)r rrrrr r]sz"ModelBackend.get_group_permissionscs8|jr|js|dk rtSt|ds2t||_|jS)N _perm_cache)r&r5rr6superrr<)r rr) __class__rr rds  z ModelBackend.get_all_permissionscs|jotj|||dS)N)r)r&r=r)r rrr)r>rr rkszModelBackend.has_permcs"|jo tfdd||DS)zU Return True if user_obj has any permissions in the given app_label. c3s$|]}|d|dkVqdS)N.)index)r1r) app_labelrr ssz0ModelBackend.has_module_perms..)r&anyr)r rrAr)rAr has_module_permsns zModelBackend.has_module_permsTc Cst|trThe `perm` argument must be a string or a permission instance.Npk)Z group__user)r%)rE)r0r/T)r7)r&) isinstancestrsplit ValueErrorr TypeErrorrrnonerrrErr,r-) r rr&Zinclude_superusersrrAr0rZ permission_qZuser_qrrr with_permws,    zModelBackend.with_permcCs<ytjj|d}Wntjk r(dSX||r8|SdS)N)rE)rrrr!r")r rr%rrr rs zModelBackend.get_user)NN)N)N)N)N)TTN)rrr__doc__r r"r)r.r:rrrrrDrLr __classcell__rr)r>r rs    $rc@seZdZddZdS)AllowAllUsersModelBackendcCsdS)NTr)r r%rrr r"sz/AllowAllUsersModelBackend.user_can_authenticateN)rrrr"rrrr rOsrOc@s,eZdZdZdZddZddZddZd S) RemoteUserBackenda This backend is to be used in conjunction with the ``RemoteUserMiddleware`` found in the middleware module of this package, and is used when the server is handling authentication outside of Django. By default, the ``authenticate`` method creates ``User`` objects for usernames that don't already exist in the database. Subclasses can disable this behavior by setting the ``create_unknown_user`` attribute to ``False``. TcCs|sdSd}||}|jrFtjjftj|i\}}|rn|||}n(ytj|}Wntjk rlYnX| |r||SdS)ai The username passed as ``remote_user`` is considered trusted. Return the ``User`` object with the given username. Create a new ``User`` object if ``create_unknown_user`` is ``True``. Return None if ``create_unknown_user`` is ``False`` and a ``User`` object with the given username is not found in the database. N) clean_usernamecreate_unknown_userrrZ get_or_createrconfigure_userr r!r")r r Z remote_userr%r#createdrrr r s  zRemoteUserBackend.authenticatecCs|S)z Perform any cleaning on the "username" prior to using it to get or create the user object. Return the cleaned username. By default, return the username unchanged. r)r r#rrr rQsz RemoteUserBackend.clean_usernamecCs|S)z Configure a user after creation and return the updated user. By default, return the user unmodified. r)r r r%rrr rSsz RemoteUserBackend.configure_userN)rrrrMrRr rQrSrrrr rPs   rPc@seZdZddZdS)AllowAllUsersRemoteUserBackendcCsdS)NTr)r r%rrr r"sz4AllowAllUsersRemoteUserBackend.user_can_authenticateN)rrrr"rrrr rUsrUN)Zdjango.contrib.authrZdjango.contrib.auth.modelsrZdjango.db.modelsrrrrrrrOrPrUrrrr s  ?