Django is_staff permission decorator

前端未结

关注

 3  1468

I am trying to limit access to pages using 2 user levels. Superuser and admin. Super user is a regular Django user with \'is_superuser\' assigned. Admin user is also a regul

相关标签:

3条回答

旧巷少年郎

2020-12-13 02:13
is_staff isn't a permission so instead of permission_required you could use:
```
@user_passes_test(lambda u: u.is_staff)
```
or
```
from django.contrib.admin.views.decorators import staff_member_required

@staff_member_required
```
0 讨论(0)
发布评论:

提交评论
- 加载中...
一个人的身影

2020-12-13 02:22
for Class Based Views you can add permission_required('is_staff') to the urls.py:
```
from django.contrib.auth.decorators import permission_required

url(r'^your-url$', permission_required('is_staff')(YourView.as_view()), name='my-view'),
```
0 讨论(0)
发布评论:

提交评论
- 加载中...
时光取名叫无心

2020-12-13 02:24
For class-based views, the UserPassesTestMixin is convenient, e.g.
```
class ImportFilePostView(LoginRequiredMixin, UserPassesTestMixin):
  def test_func(self):
    return self.request.user.is_staff
  ...
```
0 讨论(0)
发布评论:

提交评论
- 加载中...