型号和权限 [英] Model and Permissions

问题描述

我目前正在学习python/django作为我自己的教程，我做到了:

I'm currently learning python/django As a Tutorial for myself I have done that:

• 创建用户->确定
• 创建登录用户->确定
• 创建一个名为"Article"的新模型，将标题和内容作为属性->确定
• 创建多个"Article"实例->确定
• 我将所有文章显示在webapp的根目录->
• 最后一步是:为了操纵权限，仅显示一些文章，具体取决于使用权限登录的用户.就像用户A:那样，仅显示具有奇数ID的文章(没有任何意义，但这是为了学习)

手动进行实例许可"似乎很复杂吗?

It seems to be very complicated to do 'permission by instance' by hand right ?

欢呼

推荐答案

首先，我们必须创建2个权限

First we have to create our 2 permissions

from django.db import models

class Article(models.Model):
    title = models.TextField()
    content = models.TextField()

    class Meta:
        permissions = (
            ('can_view_odd_ids', 'can_view_odd_ids'),
            ('can_view_even_ids', 'can_view_even_ids'),
        )

    def __str__(self):
        return self.title

运行迁移后，我们可以使用外壳程序将权限手动应用于我们的用户

after running the migration, we can manually apply the permission to our users using the shell

odd_even = Permission.objects.get(name='can_view_even_ids')
user_yui = User.objects.get(username='yui')
user_yui.user_permissions.add(odd_even)
user_yui.save()

然后在视图中测试对我们用户的权限(类似这样)

and then test in the view the permission on our users (something like that)

def my_view(request):
    data = {}
    if request.user.is_authenticated():
        count = Article.objects.all().count()
        if request.user.has_perm("account.can_view_odd_ids"):
            data = {'articles': Article.objects.all()[1::2]})
        elif request.user.has_perm("account.can_view_even_ids"):
            data = {'articles': Article.objects.all()[0::2]})
    return render(request, 'index.html', data)

这篇关于型号和权限的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！