django-guardian

Classifiers

Development Status: 5 - Production/Stable
Environment: Web Environment
Framework: Django
Intended Audience: Developers
License: OSI Approved :: BSD License
Operating System: OS Independent
Programming Language: Python; Python :: 2.7; Python :: 3.4; Python :: 3.5; Python :: 3.6
Topic: Security

Project Description

django-guardian is an implementation of per object permissions [1] on top of Django’s authorization backend

Documentation

Online documentation is available at https://django-guardian.readthedocs.io/.

Requirements

Python 2.7 or 3.4+
A supported version of Django (currently 1.8+)

Travis CI tests on Django version 1.8, 1.10, and 1.11.

Installation

To install django-guardian simply run:

pip install django-guardian

Configuration

We need to hook django-guardian into our project.

Put guardian into your INSTALLED_APPS at settings module:

INSTALLED_APPS = (
 ...
 'guardian',
)

Add extra authorization backend to your settings.py:

AUTHENTICATION_BACKENDS = (
    'django.contrib.auth.backends.ModelBackend', # default
    'guardian.backends.ObjectPermissionBackend',
)

Create guardian database tables by running:
```
python manage.py migrate
```

Usage

After installation and project hooks we can finally use object permissions with Django.

Lets start really quickly:

>>> from django.contrib.auth.models import User, Group
>>> jack = User.objects.create_user('jack', 'jack@example.com', 'topsecretagentjack')
>>> admins = Group.objects.create(name='admins')
>>> jack.has_perm('change_group', admins)
False
>>> from guardian.models import UserObjectPermission
>>> UserObjectPermission.objects.assign_perm('change_group', jack, obj=admins)
<UserObjectPermission: admins | jack | change_group>
>>> jack.has_perm('change_group', admins)
True

Of course our agent jack here would not be able to change_group globally:

>>> jack.has_perm('change_group')
False

Admin integration

Replace admin.ModelAdmin with GuardedModelAdmin for those models which should have object permissions support within admin panel.

For example:

from django.contrib import admin
from myapp.models import Author
from guardian.admin import GuardedModelAdmin

# Old way:
#class AuthorAdmin(admin.ModelAdmin):
#    pass

# With object permissions support
class AuthorAdmin(GuardedModelAdmin):
    pass

admin.site.register(Author, AuthorAdmin)

[1]	Great paper about this feature is available at djangoadvent articles.

Release History

This version

Apr 4, 2017

Sep 8, 2016

Aug 8, 2016

Apr 4, 2016

Apr 3, 2016

Mar 9, 2016

Jan 9, 2016

Jan 8, 2016

Nov 14, 2015

Oct 20, 2015

Jun 4, 2015

Dec 27, 2014

Jul 14, 2014

Jul 14, 2014

Jul 2, 2014

Jul 2, 2014

Mar 7, 2014

May 31, 2013

May 26, 2013

Feb 26, 2013

Mar 12, 2012

Jul 25, 2011

Apr 12, 2011

Mar 25, 2011

Jan 27, 2011

Jan 14, 2011

Jan 11, 2011

Dec 2, 2010

Nov 23, 2010

Nov 17, 2010

Oct 10, 2010

Oct 3, 2010

Oct 3, 2010

Sep 27, 2010

Jun 5, 2010

Download Files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

File Name & Checksum SHA256 Checksum Help	Version	File Type	Upload Date
django_guardian-1.4.8-py2.py3-none-any.whl (95.8 kB) Copy SHA256 Checksum SHA256	2.7	Wheel	Apr 4, 2017
django-guardian-1.4.8.tar.gz (151.8 kB) Copy SHA256 Checksum SHA256	–	Source	Apr 4, 2017

django-guardian 1.4.8

Navigation

Project Links

Meta

Maintainers