django-guardian

Implementation of per object permissions for Django.

Project description

https://travis-ci.org/django-guardian/django-guardian.svg?branch=devel

django-guardian is an implementation of per object permissions [1] on top of Django’s authorization backend

Documentation

Online documentation is available at https://django-guardian.readthedocs.io/.

Requirements

Python 2.7 or 3.4+
A supported version of Django (currently 1.11+)

Travis CI tests on Django version 1.11, 2.0, and master.

Installation

To install django-guardian simply run:

pip install django-guardian

Configuration

We need to hook django-guardian into our project.

Put guardian into your INSTALLED_APPS at settings module:

INSTALLED_APPS = (
 ...
 'guardian',
)

Add extra authorization backend to your settings.py:

AUTHENTICATION_BACKENDS = (
    'django.contrib.auth.backends.ModelBackend', # default
    'guardian.backends.ObjectPermissionBackend',
)

Create guardian database tables by running:
```
python manage.py migrate
```

Usage

After installation and project hooks we can finally use object permissions with Django.

Lets start really quickly:

>>> from django.contrib.auth.models import User, Group
>>> jack = User.objects.create_user('jack', 'jack@example.com', 'topsecretagentjack')
>>> admins = Group.objects.create(name='admins')
>>> jack.has_perm('change_group', admins)
False
>>> from guardian.models import UserObjectPermission
>>> UserObjectPermission.objects.assign_perm('change_group', jack, obj=admins)
<UserObjectPermission: admins | jack | change_group>
>>> jack.has_perm('change_group', admins)
True

Of course our agent jack here would not be able to change_group globally:

>>> jack.has_perm('change_group')
False

Admin integration

Replace admin.ModelAdmin with GuardedModelAdmin for those models which should have object permissions support within admin panel.

For example:

from django.contrib import admin
from myapp.models import Author
from guardian.admin import GuardedModelAdmin

# Old way:
#class AuthorAdmin(admin.ModelAdmin):
#    pass

# With object permissions support
class AuthorAdmin(GuardedModelAdmin):
    pass

admin.site.register(Author, AuthorAdmin)

[1]	Great paper about this feature is available at djangoadvent articles.

Project details

Release history Release notifications

This version

1.5.0

Jan 31, 2019

1.4.9

Jun 30, 2017

1.4.8

Apr 4, 2017

1.4.6

Sep 8, 2016

1.4.5

Aug 8, 2016

1.4.4

Apr 4, 2016

1.4.3

Apr 3, 2016

1.4.2

Mar 9, 2016

1.4.1

Jan 9, 2016

1.4.0

Jan 8, 2016

1.3.2

Nov 14, 2015

1.3.1

Oct 20, 2015

1.3

Jun 4, 2015

1.2.5

Dec 27, 2014

1.2.4

Jul 14, 2014

1.2.3

Jul 14, 2014

1.2.2

Jul 2, 2014

1.2.1

Jul 2, 2014

1.2.0

Mar 7, 2014

1.1.1

May 31, 2013

1.1.0

May 26, 2013

1.1.0.beta pre-release

Feb 26, 2013

1.0.4

Mar 12, 2012

1.0.3

Jul 25, 2011

1.0.2

Apr 12, 2011

1.0.1

Mar 25, 2011

1.0.0

Jan 27, 2011

1.0.0.beta2 pre-release

Jan 14, 2011

1.0.0.beta1 pre-release

Jan 11, 2011

1.0.0.alpha2 pre-release

Dec 2, 2010

1.0.0.alpha1 pre-release

Nov 23, 2010

0.2.3

Nov 17, 2010

0.2.2

Oct 10, 2010

0.2.1

Oct 3, 2010

0.2.0

Oct 3, 2010

0.1.1

Sep 27, 2010

0.1.0

Jun 5, 2010

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Filename, size & hash SHA256 hash help	File type	Python version	Upload date
django_guardian-1.5.0-py2.py3-none-any.whl (101.3 kB) Copy SHA256 hash SHA256	Wheel	py2.py3	Jan 31, 2019
django-guardian-1.5.0.tar.gz (154.9 kB) Copy SHA256 hash SHA256	Source	None	Jan 31, 2019