Giter Site home page Giter Site logo

pycasbin / django-authorization-example Goto Github PK

View Code? Open in Web Editor NEW
2.0 2.0 2.0 18 KB

Example for django-authorization middleware

Home Page: https://github.com/pycasbin/django-authorization

License: Apache License 2.0

Python 52.88% HTML 47.12%
abac access-control acl casbin django django-framework middleware pycasbin python rbac

django-authorization-example's Introduction

Django-Authorization Example

Django-authorization, or dauthz is an authorization library for Django framework.

image

How To Run the Example

pip install -r requirements.txt
python manage.py makemigrations
python manage.py migrate
python manage.py runserver

Configure of Example: by step

1.add the django-orm-adapter and dauthz to INSTALLED_APPS

INSTALLED_APPS = [
    ...
    # STEP1: setup adapter(django-orm-adapter here)
    'casbin_adapter.apps.CasbinAdapterConfig',
    # STEP2: setup django-authorization
    'dauthz.apps.DauthzConfig',
    # STEP3: setup the app of your app
    'user_management.apps.UserManagementConfig',
    ...
]

2.add the middlewares you need to MIDDLEWARES

MIDDLEWARE = [
    ...
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    # STEP2: setup django-authorization
    # be aware: should after AuthenticationMiddleware
    "dauthz.middlewares.request_middleware.RequestMiddleware",
    ...
]

3.add more config of adapter and dauthz

# STEP1: setup adapter(django-orm-adapter here)
CASBIN_MODEL = os.path.join(BASE_DIR, 'dauthz_model.conf')
# STEP2: setup django-authorization
DAUTHZ = {
    # DEFAULT Dauthz enforcer
    "DEFAULT": {
        # Casbin model setting.
        "MODEL": {
            # Available Settings: "file", "text"
            "CONFIG_TYPE": "file",
            "CONFIG_FILE_PATH": CASBIN_MODEL,
            "CONFIG_TEXT": "",
        },
        # Casbin adapter.
        "ADAPTER": {
            "NAME": "casbin_adapter.adapter.Adapter",
        },
        "LOG": {
            # Changes whether Dauthz will log messages to the Logger.
            "ENABLED": False,
        },
    },
}

4. Add RBAC model to database(in /user_management/apps.py)

p_rules = [
        ["anonymous", "/", "(GET)|(POST)"],
        ["anonymous", "/login", "(GET)|(POST)"],
        ["anonymous", "/register", "(GET)|(POST)"],
        ["normal_user", "/logout", "(GET)|(POST)"],
        ["admin", "/all_users_profile", "(GET)|(POST)"],
    ]
g_rules = [
    ["normal_user", "anonymous"],
    ["admin", "normal_user"]
]
enforcer.add_policies(p_rules)
enforcer.add_grouping_policies(g_rules)
enforcer.save_policy()

Model of Example :

image

5. Completed.

License

This project is licensed under the Apache 2.0 license.

django-authorization-example's People

Contributors

hsluoyz avatar leeqvip avatar nekotoxin avatar

Stargazers

 avatar  avatar

Watchers

 avatar  avatar

Forkers

cdxfish citccld

django-authorization-example's Issues

TypeError: 'NoneType' object is not subscriptable

After running cmd python manage.py runserver , there is an exception:

Watching for file changes with StatReloader
Exception in thread django-main-thread:
File "D:\django-authorization-example\user_management\apps.py", line 31, in ready
load_policy()
File "D:\django-authorization-example\user_management\apps.py", line 21, in load_policy
enforcer.add_grouping_policies(g_rules)
TypeError: 'NoneType' object is not subscriptable

How could I solve this problem, I do need your help. Thanks a lot.

How casbin works for authentication? I didn't find func enforce()

I think casbin confirm user permissions using code such as e.enforcer(request).
But I didn't find any code about casbin in ./user_manangement/views.py L37-L58 . The code does check user's name and password, and I think this code didn't use casbin to check request for authentication.
Also, only admin can visit 'all_users_profile', but I can't find any code about casbin's function enforcer.
I'm curious how it works in this project. Thanks a lot!

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.