mirror of
https://github.com/pinry/pinry.git
synced 2025-11-13 08:35:41 +01:00
36 lines
1022 B
Python
36 lines
1022 B
Python
from django.core.validators import email_re
|
|
|
|
from pinry.core.models import Pin
|
|
from pinry.users.models import User
|
|
|
|
|
|
class CombinedAuthBackend(object):
|
|
def authenticate(self, username=None, password=None):
|
|
is_email = email_re.match(username)
|
|
if is_email:
|
|
qs = User.objects.filter(email=username)
|
|
else:
|
|
qs = User.objects.filter(username=username)
|
|
|
|
try:
|
|
user = qs.get()
|
|
except User.DoesNotExist:
|
|
return None
|
|
if user.check_password(password):
|
|
return user
|
|
return None
|
|
|
|
def get_user(self, user_id):
|
|
try:
|
|
return User.objects.get(pk=user_id)
|
|
except User.DoesNotExist:
|
|
return None
|
|
|
|
def has_perm(self, user, perm, obj=None):
|
|
"""
|
|
A very simplistic authorization mechanism for now. Basically a pin owner can do anything with the pin.
|
|
"""
|
|
if obj and isinstance(obj, Pin):
|
|
return obj.submitter == user
|
|
return False
|