jfinn
/
edan_f0
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4133 Commits
1 Branch
Tree: 33db96dce9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '33db96dce9'
${ noResults }
edan_f0/oscar/views/decorators.py

decorators.py 2.3KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. import urlparse

  2. from functools import wraps

  3. 

  4. from django.contrib.auth import REDIRECT_FIELD_NAME

  5. from django.shortcuts import render

  6. from django.contrib import messages

  7. from django.contrib.auth.views import redirect_to_login

  8. from django.core.exceptions import PermissionDenied

  9. from django.core.urlresolvers import reverse_lazy

  10. from django.utils.translation import ugettext_lazy as _

  11. 

  12. 

  13. def staff_member_required(view_func, login_url=None):

  14.     """

  15.     Ensure that the user is a logged-in staff member.

  16. 

  17.     * If not authenticated, redirect to a specified login URL.

  18.     * If not staff, show a 403 page

  19. 

  20.     This decorator is based on the decorator with the same name from

  21.     django.contrib.admin.view.decorators.  This one is superior as it allows a

  22.     redirect URL to be specified.

  23.     """

  24.     if login_url is None:

  25.         login_url = reverse_lazy('customer:login')

  26. 

  27.     @wraps(view_func)

  28.     def _checklogin(request, *args, **kwargs):

  29.         if request.user.is_active and request.user.is_staff:

  30.             return view_func(request, *args, **kwargs)

  31. 

  32.         # If user is not logged in, redirect to login page

  33.         if not request.user.is_authenticated():

  34.             # If the login url is the same scheme and net location then just

  35.             # use the path as the "next" url.

  36.             path = request.build_absolute_uri()

  37.             login_scheme, login_netloc = urlparse.urlparse(login_url)[:2]

  38.             current_scheme, current_netloc = urlparse.urlparse(path)[:2]

  39.             if ((not login_scheme or login_scheme == current_scheme) and

  40.                 (not login_netloc or login_netloc == current_netloc)):

  41.                 path = request.get_full_path()

  42. 

  43.             messages.warning(request, _("You must log in to access this page"))

  44.             return redirect_to_login(path, login_url, REDIRECT_FIELD_NAME)

  45.         else:

  46.             # User does not have permission to view this page

  47.             raise PermissionDenied

  48. 

  49.     return _checklogin

  50. 

  51. 

  52. def login_forbidden(view_func, template_name='login_forbidden.html',

  53.                     status=403):

  54.     """

  55.     Only allow anonymous users to access this view.

  56.     """

  57.     @wraps(view_func)

  58.     def _checklogin(request, *args, **kwargs):

  59.         if not request.user.is_authenticated():

  60.             return view_func(request, *args, **kwargs)

  61.         return render(request, template_name, status=status)

  62. 

  63.     return _checklogin