3 (h@shddlmZddlmZddlmZGdddeZGdddeZGdd d eZ Gd d d e Z d S) )unicode_literals)get_user_model) Permissionc@sreZdZdZdddZddZddZd d Zd d Zdd dZ dddZ dddZ dddZ ddZ ddZdS) ModelBackendz9 Authenticates against settings.AUTH_USER_MODEL. Nc Ksjt}|dkr|j|j}y|jj|}Wn"|jk rL|j|YnX|j|rf|j|rf|SdS)N) rgetUSERNAME_FIELD_default_managerget_by_natural_key DoesNotExistZ set_passwordZcheck_passworduser_can_authenticate)selfusernamepasswordkwargs UserModeluserr@/tmp/pip-install-q3hcpn_q/Django/django/contrib/auth/backends.py authenticate s zModelBackend.authenticatecCst|dd}|p|dkS)z{ Reject users with is_active=False. Custom user models that don't have that attribute are allowed. is_activeN)getattr)r rrrrrr s z"ModelBackend.user_can_authenticatecCs |jjS)N)Zuser_permissionsall)r user_objrrr_get_user_permissions"sz"ModelBackend._get_user_permissionscCs,tjjd}d|j}tjjf||iS)Ngroupsz group__%s)rZ_meta get_fieldZrelated_query_namerobjectsfilter)r rZuser_groups_fieldZuser_groups_queryrrr_get_group_permissions%s z#ModelBackend._get_group_permissionscCs|j s|js|dk rtSd|}t||s||jr@tjj}nt|d||}|j ddj }t ||tdd|Dt||S)z Returns the permissions of `user_obj` from `from_name`. `from_name` can be either "group" or "user" to return permissions from `_get_group_permissions` or `_get_user_permissions` respectively. Nz_%s_perm_cachez_get_%s_permissionsZcontent_type__app_labelcodenamecss|]\}}d||fVqdS)z%s.%sNr).0ctnamerrr :sz0ModelBackend._get_permissions..) r is_anonymoussethasattrZ is_superuserrrrrZ values_listZorder_bysetattr)r robj from_nameZperm_cache_nameZpermsrrr_get_permissions*s  zModelBackend._get_permissionscCs|j||dS)zt Returns a set of permission strings the user `user_obj` has from their `user_permissions`. r)r*)r rr(rrrget_user_permissions=sz!ModelBackend.get_user_permissionscCs|j||dS)zr Returns a set of permission strings the user `user_obj` has from the groups they belong. group)r*)r rr(rrrget_group_permissionsDsz"ModelBackend.get_group_permissionscCsJ|j s|js|dk rtSt|dsD|j||_|jj|j||jS)N _perm_cache)rr$r%r&r+r.updater-)r rr(rrrget_all_permissionsKs   z ModelBackend.get_all_permissionscCs|js dS||j||kS)NF)rr0)r rpermr(rrrhas_permSszModelBackend.has_permcCs<|js dSx,|j|D]}|d|jd|krdSqWdS)zV Returns True if user_obj has any permissions in the given app_label. FN.T)rr0index)r rZ app_labelr1rrrhas_module_permsXs zModelBackend.has_module_permsc CsBt}y|jj|d}Wn|jk r.dSX|j|r>|SdS)N)pk)rrrr r )r Zuser_idrrrrrget_usercs zModelBackend.get_user)NN)N)N)N)N)__name__ __module__ __qualname____doc__rr rrr*r+r-r0r2r5r7rrrrrs      rc@seZdZddZdS)AllowAllUsersModelBackendcCsdS)NTr)r rrrrr msz/AllowAllUsersModelBackend.user_can_authenticateN)r8r9r:r rrrrr<lsr<c@s,eZdZdZdZddZddZddZd S) RemoteUserBackenda This backend is to be used in conjunction with the ``RemoteUserMiddleware`` found in the middleware module of this package, and is used when the server is handling authentication outside of Django. By default, the ``authenticate`` method creates ``User`` objects for usernames that don't already exist in the database. Subclasses can disable this behavior by setting the ``create_unknown_user`` attribute to ``False``. Tc Cs|sdSd}|j|}t}|jrJ|jjf|j|i\}}|rr|j|}n(y|jj|}Wn|jk rpYnX|j |r|SdS)a The username passed as ``remote_user`` is considered trusted. This method simply returns the ``User`` object with the given username, creating a new ``User`` object if ``create_unknown_user`` is ``True``. Returns None if ``create_unknown_user`` is ``False`` and a ``User`` object with the given username is not found in the database. N) clean_usernamercreate_unknown_userrZ get_or_createrconfigure_userr r r )r Z remote_userrr rcreatedrrrrs   zRemoteUserBackend.authenticatecCs|S)z Performs any cleaning on the "username" prior to using it to get or create the user object. Returns the cleaned username. By default, returns the username unchanged. r)r r rrrr>sz RemoteUserBackend.clean_usernamecCs|S)z Configures a user after creation and returns the updated user. By default, returns the user unmodified. r)r rrrrr@sz RemoteUserBackend.configure_userN)r8r9r:r;r?rr>r@rrrrr=qs    r=c@seZdZddZdS)AllowAllUsersRemoteUserBackendcCsdS)NTr)r rrrrr sz4AllowAllUsersRemoteUserBackend.user_can_authenticateN)r8r9r:r rrrrrBsrBN) __future__rZdjango.contrib.authrZdjango.contrib.auth.modelsrobjectrr<r=rBrrrrs   eA