o {,h2@sddlmZddlmZddlmZddlmZmZm Z eZ GdddZ Gddde Z Gd d d e Z Gd d d e ZGd ddeZdS)) sync_to_async)get_user_model) Permission)ExistsOuterRefQc@s|eZdZddZddZddZddZdd d Zdd d ZdddZ dddZ dddZ dddZ dddZ dddZd S) BaseBackendcKdSNselfrequestkwargsr r R/var/www/html/rh/venv/lib/python3.10/site-packages/django/contrib/auth/backends.py authenticate zBaseBackend.authenticatecst|j|fi|IdHSr )rrr r r r aauthenticateszBaseBackend.aauthenticatecCr r r r user_idr r rget_userrzBaseBackend.get_usercst|j|IdHSr )rrrr r r aget_userszBaseBackend.aget_userNcCtSr setr user_objobjr r rget_user_permissionsz BaseBackend.get_user_permissionsct|j||IdHSr )rrrr r raget_user_permissionsz!BaseBackend.aget_user_permissionscCrr rrr r rget_group_permissionsrz!BaseBackend.get_group_permissionscr r )rr#rr r raget_group_permissions r"z"BaseBackend.aget_group_permissionscCs h|j||d|j||dSN)r)rr#rr r rget_all_permissions#s   zBaseBackend.get_all_permissionscs.h|j||dIdH|j||dIdHSr%)r!r$rr r raget_all_permissions)s z BaseBackend.aget_all_permissionscCs||j||dvSr%)r&r rpermrr r rhas_perm/szBaseBackend.has_permcs||||IdHvSr )r'r(r r r ahas_perm2r"zBaseBackend.ahas_permr )__name__ __module__ __qualname__rrrrrr!r#r$r&r'r*r+r r r rr s       rcseZdZdZd*ddZd*ddZddZd d Zd d Zd dZ ddZ d+ddZ d+ddZ d+ddZ d+ddZd+fdd Zd+fdd Zd+fdd Zdd Zd!d"Zd,d$d%Zd&d'Zd(d)ZZS)- ModelBackendz9 Authenticates against settings.AUTH_USER_MODEL. NcKs||dur |tj}|dus|durdSztj|}Wntjy-t|YdSw||r:||r<|SdSdSr ) get UserModelUSERNAME_FIELD_default_managerget_by_natural_key DoesNotExist set_passwordcheck_passworduser_can_authenticater rusernamepasswordruserr r rr;s zModelBackend.authenticatecs|dur |tj}|dus|durdSz tj|IdH}Wntjy1t|YdSw||IdHrA||rC|SdSdSr ) r0r1r2r3aget_by_natural_keyr5r6acheck_passwordr8r9r r rrJs zModelBackend.aauthenticatecCs t|ddS)z{ Reject users with is_active=False. Custom user models that don't have that attribute are allowed. is_activeT)getattrr r<r r rr8[s z"ModelBackend.user_can_authenticatecCs |jSr )user_permissionsallr rr r r_get_user_permissionsbs z"ModelBackend._get_user_permissionscCstjj|jdS)N) group__in)robjectsfiltergroupsrCrDr r r_get_group_permissionsesz#ModelBackend._get_group_permissionscCs|jr |js |dur tSd|}t||s;|jrtj}n t|d||}| dd }t ||dd|Dt||S)z Return the permissions of `user_obj` from `from_name`. `from_name` can be either "group" or "user" to return permissions from `_get_group_permissions` or `_get_user_permissions` respectively. N_%s_perm_cache_get_%s_permissionscontent_type__app_labelcodenamecSsh|] \}}d||fqS)%s.%sr .0ctnamer r r ysz0ModelBackend._get_permissions.. r? is_anonymousrhasattr is_superuserrrGrCr@ values_listorder_bysetattrr rr from_nameperm_cache_namepermsr r r_get_permissionshs   zModelBackend._get_permissionscs|jr |js |durtSd|}t||s?|jr tj}n t|d||}| dd }t ||dd|2IdHt||S)zSee _get_permissions().NrKrLrMrNcs(h|z3dHW\}}d||fq6S)NrOr rPr r rrTs&z1ModelBackend._aget_permissions..rUr\r r r_aget_permissions}s   zModelBackend._aget_permissionscC|||dS)zs Return a set of permission strings the user `user_obj` has from their `user_permissions`. r<r`rr r rrz!ModelBackend.get_user_permissionsc|||dIdHS)zSee get_user_permissions().r<Nrarr r rr!z"ModelBackend.aget_user_permissionscCrb)zq Return a set of permission strings the user `user_obj` has from the groups they belong. grouprcrr r rr#rdz"ModelBackend.get_group_permissionscre)zSee get_group_permissions().rhNrfrr r rr$rgz#ModelBackend.aget_group_permissionscs8|jr |js |dur tSt|dst||_|jS)N _perm_cache)r?rVrrWsuperr&rir __class__r rr&s  z ModelBackend.get_all_permissionscs|jo tj|||dSr%)r?rjr*r(rkr rr*szModelBackend.has_permcs |jotj|||dIdHSr%)r?rjr+r(rkr rr+szModelBackend.ahas_permcs"|jotfdd||DS)zU Return True if user_obj has any permissions in the given app_label. c3&|]}|d|dkVqdSN.indexrQr) app_labelr r  z0ModelBackend.has_module_perms..)r?anyr&r rrtr rsrhas_module_permsszModelBackend.has_module_permscs*|jotfdd||IdHDS)zSee has_module_perms()c3rmrnrprrrsr rrurvz1ModelBackend.ahas_module_perms..N)r?rwr'rxr rsrahas_module_permsszModelBackend.ahas_module_permsTc Cst|trz |d\}}Wntytdwt|ts#td|dur,tjSt t ddt t ddB}t|trH|t |j dM}n|t ||d M}t tj |}|ra|t d d O}|durl|t |d M}tj|S) z Return users that have permission "perm". By default, filter out inactive users and include superusers. rozDPermission name should be in the form app_label.permission_codename.z>The `perm` argument must be a string or a permission instance.Npk) group__user)r<r{)rNrMT)rX)r?) isinstancestrsplit ValueErrorr TypeErrorr1r3nonerrr{rrGrH) r r)r?include_superusersrrtrN permission_quser_qr r r with_perms0      zModelBackend.with_permcCs<z tjj|d}Wn tjyYdSw||r|SdSNr})r1r3r0r5r8r rr<r r rrs zModelBackend.get_usercsDz tjj|dIdH}Wn tjyYdSw||r |SdSr)r1r3agetr5r8rr r rrszModelBackend.aget_user)NNr )TTN)r,r-r.__doc__rrr8rErJr`rarr!r#r$r&r*r+ryrzrrr __classcell__r r rkrr/6s*       #r/c@eZdZddZdS)AllowAllUsersModelBackendcCdSNTr rAr r rr8rz/AllowAllUsersModelBackend.user_can_authenticateNr,r-r.r8r r r rr rc@s@eZdZdZdZddZddZddZdd d Zdd d Z d S)RemoteUserBackenda This backend is to be used in conjunction with the ``RemoteUserMiddleware`` found in the middleware module of this package, and is used when the server is handling authentication outside of Django. By default, the ``authenticate`` method creates ``User`` objects for usernames that don't already exist in the database. Subclasses can disable this behavior by setting the ``create_unknown_user`` attribute to ``False``. TcCs|sdSd}d}||}|jrtjjditj|i\}}nztj|}Wn tjy1Ynw|j|||d}| |rA|SdS)ai The username passed as ``remote_user`` is considered trusted. Return the ``User`` object with the given username. Create a new ``User`` object if ``create_unknown_user`` is ``True``. Return None if ``create_unknown_user`` is ``False`` and a ``User`` object with the given username is not found in the database. NFcreatedr ) clean_usernamecreate_unknown_userr1r3 get_or_creater2r4r5configure_userr8r r remote_userrr<r:r r rr s     zRemoteUserBackend.authenticatecs|sdSd}d}||}|jr#tjjditj|iIdH\}}nz tj|IdH}Wn tjy8Ynw|j|||dIdH}| |rK|SdS)zSee authenticate().NFrr ) rrr1r3aget_or_creater2r=r5aconfigure_userr8rr r rr's"  zRemoteUserBackend.aauthenticatecCs|S)z Perform any cleaning on the "username" prior to using it to get or create the user object. Return the cleaned username. By default, return the username unchanged. r )r r:r r rr>sz RemoteUserBackend.clean_usernamecCs|S)zp Configure a user and return the updated user. By default, return the user unmodified. r r rr<rr r rrGsz RemoteUserBackend.configure_usercst|j|||IdHS)zSee configure_user()N)rrrr r rrOsz!RemoteUserBackend.aconfigure_userN)T) r,r-r.rrrrrrrr r r rrs  rc@r)AllowAllUsersRemoteUserBackendcCrrr rAr r rr8Urz4AllowAllUsersRemoteUserBackend.user_can_authenticateNrr r r rrTrrN) asgiref.syncrdjango.contrib.authrdjango.contrib.auth.modelsrdjango.db.modelsrrrr1rr/rrrr r r rs  ,@Z