geonode.base.api.permissions

Attributes

logger

Classes

IsSelf

Grant permission only if the current instance is the request user.

IsSelfOrReadOnly

Grant permissions if instance IS the request user, or read-only.

IsSelfOrAdmin

Grant R/W to self and superusers/staff members. Deny others.

IsSelfOrAdminOrReadOnly

Grant R/W to self and superusers/staff members, R/O to others.

IsSelfOrAdminOrAuthenticatedReadOnly

Grant R/W to self and superusers/staff members, R/O to auth.

IsOwnerOrAdmin

Object-level permission to only allow admin and owners of an object to edit it.

IsOwnerOrReadOnly

Object-level permission to only allow owners of an object to edit it.

IsManagerEditOrAdmin

Object-level permission to only allow admin and managers to edit a group.

ResourceBasePermissionsFilter

A filter backend that limits results to those where the requesting user

UserHasPerms

Module Contents

geonode.base.api.permissions.logger[source]
class geonode.base.api.permissions.IsSelf[source]

Bases: rest_framework.permissions.BasePermission

Grant permission only if the current instance is the request user. Used to allow users to edit their own account, nothing to others (even superusers).

has_permission(request, view)[source]

Always return False here. The fine-grained permissions are handled in has_object_permission().

has_object_permission(request, view, obj)[source]
class geonode.base.api.permissions.IsSelfOrReadOnly[source]

Bases: IsSelf

Grant permissions if instance IS the request user, or read-only. Used to allow users to edit their own account, and others to read.

has_object_permission(request, view, obj)[source]
class geonode.base.api.permissions.IsSelfOrAdmin[source]

Bases: IsSelf

Grant R/W to self and superusers/staff members. Deny others.

has_permission(request, view)[source]

Always return False here. The fine-grained permissions are handled in has_object_permission().

has_object_permission(request, view, obj)[source]
class geonode.base.api.permissions.IsSelfOrAdminOrReadOnly[source]

Bases: IsSelfOrAdmin

Grant R/W to self and superusers/staff members, R/O to others.

has_permission(request, view)[source]

Always return False here. The fine-grained permissions are handled in has_object_permission().

has_object_permission(request, view, obj)[source]
class geonode.base.api.permissions.IsSelfOrAdminOrAuthenticatedReadOnly[source]

Bases: IsSelfOrAdmin

Grant R/W to self and superusers/staff members, R/O to auth.

has_object_permission(request, view, obj)[source]
class geonode.base.api.permissions.IsOwnerOrAdmin[source]

Bases: rest_framework.permissions.BasePermission

Object-level permission to only allow admin and owners of an object to edit it. Assumes the model instance has an owner attribute.

has_object_permission(request, view, obj)[source]
class geonode.base.api.permissions.IsOwnerOrReadOnly[source]

Bases: IsOwnerOrAdmin

Object-level permission to only allow owners of an object to edit it. Assumes the model instance has an owner attribute.

has_object_permission(request, view, obj)[source]
class geonode.base.api.permissions.IsManagerEditOrAdmin[source]

Bases: rest_framework.permissions.BasePermission

Object-level permission to only allow admin and managers to edit a group.

has_permission(request, view)[source]
has_object_permission(request, view, obj)[source]
class geonode.base.api.permissions.ResourceBasePermissionsFilter[source]

Bases: rest_framework.filters.BaseFilterBackend

A filter backend that limits results to those where the requesting user has read object level permissions.

filter_queryset(request, queryset, view)[source]
class geonode.base.api.permissions.UserHasPerms(perms_dict={})[source]

Bases: rest_framework.permissions.DjangoModelPermissions

perms_map[source]
perms_dict[source]
__call__()[source]
has_permission(request, view)[source]