1.为模型类添加权限
from django.db import models from django.utils.translation import ugettext_lazy as _ class Monitor(models.Model): ...... class Meta: verbose_name = _(u'设备信息') verbose_name_plural = verbose_name db_table = 'monitor' permissions = ( ('can_import_device', _(u'批量导入设备')), ('can_browse_monitor', _(u'浏览设备列表')), )
2.views中可以使用如下方法来操作权限
print request.user.has_perm('appname.can_import_device') #appname为应用名,后面的为权限名 myuser.user_permissions = [permission_list] #myuser为通过request.user获取的user对象 myuser.user_permissions.add(permission, permission, ...) myuser.user_permissions.remove(permission, permission, ...) myuser.user_permissions.clear()
3.在template中使用权限方法:
{% if perms.appname %} <!--appname为应用名-->
<p>你有些权限可以操作</p>
{% if perms.appname.can_import_device %}
<p>你可以导入设备</p>
{% endif %}
{% if perms.appname.can_browse_monitor %}
<p>你可以浏览设备!</p>
{% endif %}
{% else %}
<p>无权限.</p>
{% endif %}
4.permission提供的装饰器
from django.contrib.auth.decorators import login_required @login_required def my_view(request): # ... def user_can_import(user): return user.is_authenticated() and user.has_perm("appname.can_import_device") @user_passes_text(user_can_import, login_url="/login/") def vote(request): # Code here can assume a logged-in user with the correct permission. ... from django.contrib.auth.decorators import permission_required @permission_required('appname.can_browse_monitor', login_url="/login/") def browse_monitor(request):