问题描述
我试图从Django 1.5中获益,并创建了自定义用户模型。为了使用内置权限,我想在管理界面中限制访问。我还从PermissionMixin继承了我的用户类。但是,当我创建新用户并检查员工框时,新用户将获得超级用户的所有访问权限。我做错了什么?
models.py
class MyUserManager(BaseUserManager):
def create_user(self,email,password = None):
如果不是电子邮件:
raise ValueError(_('用户必须有电子邮件地址'))
user = self.model (email = MyUserManager.normalize_email(email),)
user.set_password(password)
user.save(using = self._db)
return user
def create_superuser(self,email,password):
user = self.create_user(email,password = password)
user.is_superuser = True
user.is_staff = True
用户。 save(using = self._db)
return user
class MyUser(AbstractBaseUser,PermissionsMixin):
email = models.EmailField(unique = True,db_index =真的,)
is_acti ve = models.BooleanField(_('active'),default = True,
help_text = _('指定该用户是否应该被视为'
'活动。取消选择而不是删除帐号'))
is_staff = models.BooleanField(_('staff status'),default = False,
help_text = _('指定用户是否可以登录此管理员'))
objects = MyUserManager()
USERNAME_FIELD ='email'
我重写了自定义用户模型。与django用户模型的主要区别在于我的没有用户名字段。以下是代码:
导入警告
从django.core.exceptions import不正确地配置
从django。来自django.db的core.mail import send_mail
导入模型
from django.contrib.auth.models import AbstractBaseUser,PermissionsMixin,\
SiteProfileNotAvailable,BaseUserManager
from django.utils import从django.utils.http导入urlquote
从django.utils.translation导入ugettext_lazy的时区
$ _
class CustomUserManager(BaseUserManager):
def create_user(self,email = None,password = None,** extra_fields):
创建并保存具有给定电子邮件和密码的用户
now = timezone.now()
如果不是电子邮件:
raise ValueError('给定的电子邮件必须设置')
email = CustomUserManager.normalize_email(email)
user = self.model(email = email,
is_staff = Fal se,is_active = True,is_superuser = False,
last_login = now,date_joined = now,** extra_fields)
user.set_password(password)
user.save(using = self._db)
返回用户
def create_superuser(self,email,password,** extra_fields):
u = self.create_user(email,password,** extra_fields)
u.is_staff = True
u.is_active = True
u.is_superuser = True
u.save(using = self._db)
return u
class CustomUser(AbstractBaseUser,PermissionsMixin):
email = models.EmailField(_('email address'),unique = True)
first_name = models.CharField(_ 'first name'),max_length = 30,blank = True)
middle_name = models.CharField(_('middle name'),max_length = 30,blank = True)
last_name = models.CharField _('last name'),max_length = 30,blank = True)
is_staff = models.BooleanField(_('staff status'),def ault = False,
help_text = _('指定用户是否可以登录到此管理员'
'网站。))
is_active = models.BooleanField(_('active'), default = True,
help_text = _('指定是否将此用户视为
处于活动状态。取消选择而不是删除帐户'))
date_joined = models.DateTimeField(_('date joined'),default = timezone.now)
objects = CustomUserManager()
USERNAME_FIELD ='email'
def get_absolute_url(self):
return/ users /%s /%urlquote(self.username)
def get_full_name(self):
返回first_name加上last_name,之间有一个空格
full_name ='%s%s '%(self.first_name,self.last_name)
return full_name.strip()
def get_short_name(self):
返回用户的短名称。
return self.first_name
def email_user(self,subject,message,from_email = None):
发送电子邮件给这个用户
send_mail(subject,message,from_email,[self.email])
def get_profile(self):
返回站点
warnings.warn(使用AUTH_PROFILE_MODULE定义用户配置文件
(如果此网站不允许配置文件)
SiteProfileNotAvailable
PendingDeprecationWarning)
如果不是hasattr(self,'_profile_cache'):
从django.conf导入设置
如果不是getattr(设置,'AUTH_PROFILE_MODULE ',False):
raise SiteProfileNotAvailable(
'您需要在项目'
'设置中设置AUTH_PROFILE_MODULE )
try:
app_label,model_name = settings.AUTH_PROFILE_MODULE.split('。')
除了ValueError:
raise SiteProfileNotAvailable(
'app_label和model_name应该分开
'AUTH_PROFILE_MODULE设置')
try:
model = models.get_model(app_label,model_name)
如果模型为无:
raise SiteProfileNotAvailable (
'无法加载配置文件模型,在项目设置中检查'
'AUTH_PROFILE_MODULE')
self._profile_cache = model._default_manager.using(
self._state.db ).get(user__id__exact = self.id)
self._profile_cache.user = self
except(ImportError,UnsperlyConfigured):
raise Si teProfileNotAvailable
return self._profile_cache
现在它工作并保留所有默认权限。另请注意,对于管理员,您必须重写用户 ModelAdmin 和 UserCreationForm 以及 UserChangeForm 类。
I'm trying to benefit from Django 1.5 and created custom user model. In order to use builtin permissions, which I would like to limit access with in the admin interface. I inherited my user class also from PermissionMixin. But when I create new user and check Staff box, the new user gets all the access that superuser has.
What am I doing wrong?
models.py
class MyUserManager(BaseUserManager):
def create_user(self, email, password=None):
if not email:
raise ValueError(_('Users must have an email address'))
user = self.model(email=MyUserManager.normalize_email(email),)
user.set_password(password)
user.save(using=self._db)
return user
def create_superuser(self, email, password):
user = self.create_user(email, password=password,)
user.is_superuser = True
user.is_staff = True
user.save(using=self._db)
return user
class MyUser(AbstractBaseUser, PermissionsMixin):
email = models.EmailField(unique=True, db_index=True,)
is_active = models.BooleanField(_('active'), default=True,
help_text=_('Designates whether this user should be treated as '
'active. Unselect this instead of deleting accounts.'))
is_staff = models.BooleanField(_('staff status'), default=False,
help_text=_('Designates whether the user can log into this admin site.'))
objects = MyUserManager()
USERNAME_FIELD = 'email'
I've rewritten custom user model. The main difference from the django user model now is that mine does not have username field. Here is the code:
import warnings
from django.core.exceptions import ImproperlyConfigured
from django.core.mail import send_mail
from django.db import models
from django.contrib.auth.models import AbstractBaseUser, PermissionsMixin,\
SiteProfileNotAvailable, BaseUserManager
from django.utils import timezone
from django.utils.http import urlquote
from django.utils.translation import ugettext_lazy as _
class CustomUserManager(BaseUserManager):
def create_user(self, email=None, password=None, **extra_fields):
"""
Creates and saves a User with the given email and password.
"""
now = timezone.now()
if not email:
raise ValueError('The given email must be set')
email = CustomUserManager.normalize_email(email)
user = self.model(email=email,
is_staff=False, is_active=True, is_superuser=False,
last_login=now, date_joined=now, **extra_fields)
user.set_password(password)
user.save(using=self._db)
return user
def create_superuser(self, email, password, **extra_fields):
u = self.create_user(email, password, **extra_fields)
u.is_staff = True
u.is_active = True
u.is_superuser = True
u.save(using=self._db)
return u
class CustomUser(AbstractBaseUser, PermissionsMixin):
email = models.EmailField(_('email address'), unique=True)
first_name = models.CharField(_('first name'), max_length=30, blank=True)
middle_name = models.CharField(_('middle name'), max_length=30, blank=True)
last_name = models.CharField(_('last name'), max_length=30, blank=True)
is_staff = models.BooleanField(_('staff status'), default=False,
help_text=_('Designates whether the user can log into this admin '
'site.'))
is_active = models.BooleanField(_('active'), default=True,
help_text=_('Designates whether this user should be treated as '
'active. Unselect this instead of deleting accounts.'))
date_joined = models.DateTimeField(_('date joined'), default=timezone.now)
objects = CustomUserManager()
USERNAME_FIELD = 'email'
def get_absolute_url(self):
return "/users/%s/" % urlquote(self.username)
def get_full_name(self):
"""
Returns the first_name plus the last_name, with a space in between.
"""
full_name = '%s %s' % (self.first_name, self.last_name)
return full_name.strip()
def get_short_name(self):
"Returns the short name for the user."
return self.first_name
def email_user(self, subject, message, from_email=None):
"""
Sends an email to this User.
"""
send_mail(subject, message, from_email, [self.email])
def get_profile(self):
"""
Returns site-specific profile for this user. Raises
SiteProfileNotAvailable if this site does not allow profiles.
"""
warnings.warn("The use of AUTH_PROFILE_MODULE to define user profiles"
" has been deprecated.",
PendingDeprecationWarning)
if not hasattr(self, '_profile_cache'):
from django.conf import settings
if not getattr(settings, 'AUTH_PROFILE_MODULE', False):
raise SiteProfileNotAvailable(
'You need to set AUTH_PROFILE_MODULE in your project '
'settings')
try:
app_label, model_name = settings.AUTH_PROFILE_MODULE.split('.')
except ValueError:
raise SiteProfileNotAvailable(
'app_label and model_name should be separated by a dot in '
'the AUTH_PROFILE_MODULE setting')
try:
model = models.get_model(app_label, model_name)
if model is None:
raise SiteProfileNotAvailable(
'Unable to load the profile model, check '
'AUTH_PROFILE_MODULE in your project settings')
self._profile_cache = model._default_manager.using(
self._state.db).get(user__id__exact=self.id)
self._profile_cache.user = self
except (ImportError, ImproperlyConfigured):
raise SiteProfileNotAvailable
return self._profile_cache
Now it works and keeps all default permissions. Also note, that for the admin you must rewrite user ModelAdmin and UserCreationForm along with UserChangeForm classes.
这篇关于Django自定义用户模型:如何管理员工权限?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!