ó pÁìVc@sàdZddlmZddlmZdZdefd„ƒYZd efd „ƒYZd efd „ƒYZ d efd„ƒYZ defd„ƒYZ defd„ƒYZ de fd„ƒYZ de fd„ƒYZdS(u2 Provides a set of pluggable permission policies. iÿÿÿÿ(tunicode_literals(tHttp404uGETuHEADuOPTIONStBasePermissioncBs eZdZd„Zd„ZRS(uH A base class from which all permission classes should inherit. cCstS(uL Return `True` if permission is granted, `False` otherwise. (tTrue(tselftrequesttview((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pythas_permissionscCstS(uL Return `True` if permission is granted, `False` otherwise. (R(RRRtobj((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pythas_object_permissions(t__name__t __module__t__doc__RR (((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR s tAllowAnycBseZdZd„ZRS(u¹ Allow any access. This isn't strictly required, since you could use an empty permission_classes list, but it's useful because it makes the intention more explicit. cCstS(N(R(RRR((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR$s(R R R R(((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR stIsAuthenticatedcBseZdZd„ZRS(u4 Allows access only to authenticated users. cCs|jo|jjƒS(N(tusertis_authenticated(RRR((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR-s(R R R R(((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR(st IsAdminUsercBseZdZd„ZRS(u, Allows access only to admin users. cCs|jo|jjS(N(Rtis_staff(RRR((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR6s(R R R R(((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR1stIsAuthenticatedOrReadOnlycBseZdZd„ZRS(uL The request is authenticated as a user, or is a read-only request. cCs%|jtkp$|jo$|jjƒS(N(tmethodt SAFE_METHODSRR(RRR((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR?s (R R R R(((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR:stDjangoModelPermissionscBsieZdZigd6gd6gd6dgd6dgd6dgd6d gd 6ZeZd „Zd „ZRS( u} The request is authenticated using `django.contrib.auth` permissions. See: https://docs.djangoproject.com/en/dev/topics/auth/#permissions It ensures that the user is authenticated, and has the appropriate `add`/`change`/`delete` permissions on the model. This permission can only be applied against view classes that provide a `.queryset` attribute. uGETuOPTIONSuHEADu %(app_label)s.add_%(model_name)suPOSTu#%(app_label)s.change_%(model_name)suPUTuPATCHu#%(app_label)s.delete_%(model_name)suDELETEcCsBi|jjd6|jjd6}g|j|D]}||^q.S(u‚ Given a model and an HTTP method, return the list of permission codes that the user is required to have. u app_labelu model_name(t_metat app_labelt model_namet perms_map(RRt model_clstkwargstperm((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pytget_required_permissionsbs cCs¨t|dtƒrtSt|dƒr4|jƒ}nt|ddƒ}|dk s^tdƒ‚|j|j|j ƒ}|j o§|j j ƒs˜|j o§|j j |ƒS(Nu_ignore_model_permissionsu get_querysetuquerysetuoCannot apply DjangoModelPermissions on a view that does not set `.queryset` or have a `.get_queryset()` method.(tgetattrtFalseRthasattrt get_querysettNonetAssertionErrorRRtmodelRRtauthenticated_users_onlyt has_perms(RRRtquerysettperms((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyRms  (R R R RRR&RR(((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyRGs      t$DjangoModelPermissionsOrAnonReadOnlycBseZdZeZRS(uj Similar to DjangoModelPermissions, except that anonymous users are allowed read-only access. (R R R R R&(((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR*†stDjangoObjectPermissionscBsceZdZigd6gd6gd6dgd6dgd6dgd6d gd 6Zd „Zd „ZRS( u— The request is authenticated using Django's object-level permissions. It requires an object-permissions-enabled backend, such as Django Guardian. It ensures that the user is authenticated, and has the appropriate `add`/`change`/`delete` permissions on the object using .has_perms. This permission can only be applied against view classes that provide a `.queryset` attribute. uGETuOPTIONSuHEADu %(app_label)s.add_%(model_name)suPOSTu#%(app_label)s.change_%(model_name)suPUTuPATCHu#%(app_label)s.delete_%(model_name)suDELETEcCsBi|jjd6|jjd6}g|j|D]}||^q.S(Nu app_labelu model_name(RRRR(RRRRR((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pytget_required_object_permissions¤s c CsÎt|dƒr|jƒ}nt|ddƒ}|dk sHtdƒ‚|j}|j}|j|j|ƒ}|j ||ƒsÊ|jt kr™t ‚n|jd|ƒ}|j ||ƒsÆt ‚nt St S(Nu get_querysetuquerysetupCannot apply DjangoObjectPermissions on a view that does not set `.queryset` or have a `.get_queryset()` method.uGET(R!R"RR#R$R%RR,RR'RRR R( RRRRR(RRR)t read_perms((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR «s      (R R R RR,R (((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyR+Žs      N(uGETuHEADuOPTIONS(R t __future__Rt django.httpRRtobjectRR RRRRR*R+(((st/opt/seafile/seafile-server-5.1.3/seahub/thirdpart/djangorestframework-3.3.2-py2.7.egg/rest_framework/permissions.pyts    ?