mirror of
https://github.com/ae-utbm/sith.git
synced 2024-12-23 00:01:16 +00:00
30 lines
1.1 KiB
Python
30 lines
1.1 KiB
Python
|
from __future__ import annotations
|
||
|
|
||
|
from typing import TYPE_CHECKING
|
||
|
|
||
|
from django.contrib.auth.backends import ModelBackend
|
||
|
from django.contrib.auth.models import Permission
|
||
|
|
||
|
if TYPE_CHECKING:
|
||
|
from core.models import User
|
||
|
|
||
|
|
||
|
class SithModelBackend(ModelBackend):
|
||
|
"""Custom auth backend for the Sith.
|
||
|
|
||
|
In fact, it's the exact same backend as `django.contrib.auth.backend.ModelBackend`,
|
||
|
with the exception that group permissions are fetched slightly differently.
|
||
|
Indeed, django tries by default to fetch the permissions associated
|
||
|
with all the `django.contrib.auth.models.Group` of a user ;
|
||
|
however, our User model overrides that, so the actual linked group model
|
||
|
is [core.models.Group][].
|
||
|
Instead of having the relation `auth_perm --> auth_group <-- core_user`,
|
||
|
we have `auth_perm --> auth_group <-- core_group <-- core_user`.
|
||
|
|
||
|
Thus, this backend make the small tweaks necessary to make
|
||
|
our custom models interact with the django auth.
|
||
|
"""
|
||
|
|
||
|
def _get_group_permissions(self, user_obj: User):
|
||
|
return Permission.objects.filter(group__group__users=user_obj)
|