Skip to content

fernandezcuesta/django-guardian

9 Branches31 Tags
This branch is 1 commit ahead of, 117 commits behind django-guardian/django-guardian:devel.

Folders and files

NameName
Last commit message
Last commit date

Latest commit

author
JM Fernández
Place edit at the beginning of the table
Nov 18, 2021
85c5e79 · Nov 18, 2021

History

1,058 Commits
.github/workflows
.github/workflows
Nov 14, 2021
benchmarks
benchmarks
Nov 14, 2019
docs
docs
Mar 21, 2021
example_project
example_project
Jan 21, 2020
guardian
guardian
Nov 18, 2021
.gitignore
.gitignore
Sep 17, 2018
.isort.cfg
.isort.cfg
Jul 17, 2016
AUTHORS
AUTHORS
Oct 13, 2020
CHANGES
CHANGES
May 23, 2021
LICENSE
LICENSE
Sep 4, 2016
MANIFEST.in
MANIFEST.in
May 10, 2016
README.rst
README.rst
Mar 21, 2021
extras.py
extras.py
Jan 13, 2016
manage.py
manage.py
Jan 13, 2016
pytest.ini
pytest.ini
Sep 10, 2018
requirements.txt
requirements.txt
May 6, 2020
run_test_and_report.sh
run_test_and_report.sh
Feb 11, 2013
setup.cfg
setup.cfg
May 23, 2021
setup.py
setup.py
Nov 14, 2021
tox.ini
tox.ini
Nov 14, 2021
utils.py
utils.py
Nov 14, 2019

Repository files navigation

django-guardian

https://github.com/django-guardian/django-guardian/workflows/Tests/badge.svg?branch=devel

django-guardian is an implementation of per object permissions [1] on top of Django's authorization backend

Documentation

Online documentation is available at https://django-guardian.readthedocs.io/.

Requirements

  • Python 3.5+
  • A supported version of Django (currently 2.2+)

GitHub Actions run tests against Django versions 2.2, 3.0, 3.1, 3.2, and main.

Installation

To install django-guardian simply run:

pip install django-guardian

Configuration

We need to hook django-guardian into our project.

  1. Put guardian into your INSTALLED_APPS at settings module:
INSTALLED_APPS = (
 ...
 'guardian',
)
  1. Add extra authorization backend to your settings.py:
AUTHENTICATION_BACKENDS = (
    'django.contrib.auth.backends.ModelBackend', # default
    'guardian.backends.ObjectPermissionBackend',
)

  1. Create guardian database tables by running:

    python manage.py migrate

Usage

After installation and project hooks we can finally use object permissions with Django.

Lets start really quickly:

>>> from django.contrib.auth.models import User, Group
>>> jack = User.objects.create_user('jack', '[email protected]', 'topsecretagentjack')
>>> admins = Group.objects.create(name='admins')
>>> jack.has_perm('change_group', admins)
False
>>> from guardian.models import UserObjectPermission
>>> UserObjectPermission.objects.assign_perm('change_group', jack, obj=admins)
<UserObjectPermission: admins | jack | change_group>
>>> jack.has_perm('change_group', admins)
True

Of course our agent jack here would not be able to change_group globally:

>>> jack.has_perm('change_group')
False

Admin integration

Replace admin.ModelAdmin with GuardedModelAdmin for those models which should have object permissions support within admin panel.

For example:

from django.contrib import admin
from myapp.models import Author
from guardian.admin import GuardedModelAdmin

# Old way:
#class AuthorAdmin(admin.ModelAdmin):
#    pass

# With object permissions support
class AuthorAdmin(GuardedModelAdmin):
    pass

admin.site.register(Author, AuthorAdmin)
[1]Great paper about this feature is available at djangoadvent articles.

About

Per object permissions for Django

django-guardian.readthedocs.io/

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

31 tags

Packages

No packages published

Languages

  • Python 92.1%
  • HTML 7.8%
  • Shell 0.1%