示例#1
0
 def get_permissions(self):
     if self.request.method in permissions.SAFE_METHODS:
         return [permissions.AllowAny(), ]
     return [permissions.IsAdminUser(), ]
示例#2
0
 def get_permissions(self):
     if self.request.method in ['HEAD', 'OPTIONS']:
         return (permissions.AllowAny(), )
     return (permissions.IsAuthenticated(), )
示例#3
0
 def get_permissions(self):
     if self.request.method in permissions.SAFE_METHODS:
         return permissions.AllowAny(),
     return permissions.IsAuthenticated(), IsAuthorOfPost(),
示例#4
0
 def get_permissions(self):
     # allow non-authenticated user to create via POST
     return (permissions.AllowAny()
             if self.request.method == 'POST' else IsOwnerOrReadOnly()),
示例#5
0
 def get_permissions(self):
     if self.action == 'my_info':
         return [permissions.IsAuthenticated()]
     elif self.detail and not self.action == 'retrieve':
         return [(IsUser | permissions.IsAdminUser)()]
     return [permissions.AllowAny()]
示例#6
0
文件: views.py 项目: bmwasaru/journal 
 def get_permissions(self):
     if self.request.method in permissions.SAFE_METHODS:
         return (permissions.AllowAny(), )
示例#7
0
 def get_permissions(self):
     if self.request.method == "POST":
         return [permissions.AllowAny()]
     return [permissions.IsAuthenticated()]
示例#8
0
文件: views.py 项目: fiskoner/cinema 
 def get_permissions(self):
     if self.action in ['list', 'retrieve', 'stream_video']:
         return (rest_permissions.AllowAny(), )
     if self.action in ['update', 'create']:
         return (rest_permissions.IsAdminUser(), )
     return (permission() for permission in self.permission_classes)
示例#9
0
 def get_permissions(self):
     # allow non-authenticated user to create via POST
     return (permissions.AllowAny()
             if self.request.method == 'POST' else IsStaffOrTargetUser()),
示例#10
0
 def get_permissions(self):
     if self.request.method == 'GET':
         return [permissions.AllowAny()]
     else:
         return [permissions.IsAuthenticated()]
示例#11
0
 def get_permissions(self):
     if self.request.method in permissions.SAFE_METHODS:
         return (permissions.AllowAny(),)
     return (permissions.IsAuthenticated(), IsOwner(),)
示例#12
0
 def get_permissions(self):
     if self.action == 'list':
         return [permissions.AllowAny()]
     return [permissions.IsAdminUser()]
示例#13
0
    def get_permissions(self):
        if self.action == 'create':
            return [permissions.AllowAny()]

        return [permissions.IsAuthenticated()]
示例#14
0
 def get_permissions(self):
     if self.action == 'create':
         return [permission() for permission in self.permission_classes]
     if self.action == 'update':
         return (IsOwnerOrReadOnly(), )
     return (permissions.AllowAny(), )
示例#15
0
    def get_permissions(self):
        current_permissions = super().get_permissions()
        if self.action in ("retrieve", "list"):
            return [permissions.AllowAny()]

        return current_permissions
示例#16
0
    def get_permissions(self):
        if self.action == 'create':
            return [permissions.AllowAny()]

        return super().get_permissions()
示例#17
0
 def get_permissions(self):
     if self.request.method == 'PUT' or self.request.method == 'PATCH':
         return (UserPermission('can_create_dept'), )
     elif self.request.method == 'GET':
         return (permissions.AllowAny(), )
     raise MethodNotAllowed(method=self.request.method)
示例#18
0
 def get_permissions(self):
     if self.action in ["list", "retrieve", "search", "filter"]:
         return [
             permissions.AllowAny(),
         ]
     return super().get_permissions()
示例#19
0
 def get_permissions(self):
     return (permissions.AllowAny(), )
示例#20
0
 def get_permissions(self):
     if self.action in ["list" , "retrieve" , "create" , "search", "filter" , "approved" , "card" , "report"]:
         return [permissions.AllowAny(), ]
     return super().get_permissions()
示例#21
0
 def get_permissions(self):
     if self.action in ['list', 'retrieve']:
         return [
             permissions.AllowAny(),
         ]
     return [permissions.IsAuthenticated()]
示例#22
0
文件: views.py 项目: mmekou/e-store 
 def get_permissions(self):
     return (permissions.AllowAny() if self.request.method == 'POST' else IsStaffOrTargetUser()),
示例#23
0
    def get_permissions(self):
        if self.request.method in permissions.SAFE_METHODS or self.request.method == "POST":
            return permissions.AllowAny(),

        return permissions.IsAuthenticated(), IsAccountOwner(),
示例#24
0
 def get_permissions(self):
     if self.action in ('list', 'retrieve', 'get_books'):
         return (permissions.AllowAny(),)
     return (permissions.IsAdminUser(),)
示例#25
0
 def get_permission(self):
     if self.request.method == 'POST':
         return (UserPermission('can_add_copy_of_book'), )
     elif self.request.method == 'GET':
         return (permissions.AllowAny(), )
     return MethodNotAllowed(method=self.request.method)
示例#26
0
 def get_permissions(self):
     if self.action == "list" or self.action == "retrieve":
         return (permissions.AllowAny(),)
     if self.action == "destroy":
         return (permissions.IsAdminUser(),)
     return (permissions.IsAuthenticated(),)
示例#27
0
    def get_permissions(self):
        if self.request.method == 'POST':
            return (permissions.AllowAny(), )

        return (permissions.IsAuthenticated(), )
示例#28
0
 def get_permissions(self):
     """覆写,以在不同的请求方法下使用不同的权限认证"""
     if self.action == "create":
         return [permissions.IsAuthenticated()]  # 登录了才能发帖
     return [permissions.AllowAny()]  # 登不登录都能看贴
示例#29
0
 def get_permissions(self):
     if self.request.method == 'POST':
         return (permissions.AllowAny(), )
     elif self.request.method == 'GET':
         return (UserPermission('can_get_users'), )
     raise MethodNotAllowed(method=self.request.method)
示例#30
0
 def get_permissions(self):
     if settings.WALDUR_MARKETPLACE['ANONYMOUS_USER_CAN_VIEW_OFFERINGS']:
         return [rf_permissions.AllowAny()]
     else:
         return super(PublicViewsetMixin, self).get_permissions()