U {ha@sddlZddlmZddlZddlmZddlmZddlm Z ddl m Z ddl m ZddlmZddlm Z dd lmZdd lmZdd lmZd d ZddZddZddZGdddZddZddZddZdS)Nwraps)settings)PermissionDenied)redirect)reverse)override)gettextmessages) LogContext)page_permission_policycCs8|jddkrtddlm}||tdtdS)z.Return a standard 'permission denied' responsex-requested-withXMLHttpRequestrr z6Sorry, you do not have permission to access this area.Zwagtailadmin_home)headersgetr wagtail.adminr error_r)requestr rZ/var/www/dating/data/www/fatepal.com/env/lib/python3.8/site-packages/wagtail/admin/auth.pypermission_denieds  rcsfdd}|S)z Given a test function that takes a user object and returns a boolean, return a view decorator that denies access to the user if the test returns false. cstfdd}|S)Ncs&|jr|f||St|SdSN)userr)rargskwargs)test view_funcrrwrapped_view_func's z>user_passes_test..decorator..wrapped_view_funcr)rrrrr decorator#sz#user_passes_test..decoratorr)rr"rr ruser_passes_tests r#csfdd}t|S)a Replacement for django.contrib.auth.decorators.permission_required which returns a more meaningful 'permission denied' response than just redirecting to the login page. (The latter doesn't work anyway because Wagtail doesn't define LOGIN_URL...) cs |SrZhas_permrpermission_namerrr<sz!permission_required..testr#)r'rrr&rpermission_required5s r)csfdd}t|S)z Decorator that accepts a list of permission names, and allows the user to pass if they have *any* of the permissions in the list csD]}||rdSqdS)NTFr$)rpermpermsrrrIs z%any_permission_required..testr()r,rrr+rany_permission_requiredCs r-c@s(eZdZdZddZddZddZdS) PermissionPolicyCheckerz Provides a view decorator that enforces the given permission policy, returning the wagtailadmin 'permission denied' response if permission not granted cCs ||_dSr)policy)selfr/rrr__init__Ysz PermissionPolicyChecker.__init__csfdd}t|S)Ncsj|Sr)r/Zuser_has_permissionr%actionr0rrr]sz-PermissionPolicyChecker.require..testr()r0r3rrr2rrequire\szPermissionPolicyChecker.requirecsfdd}t|S)Ncsj|Sr)r/user_has_any_permissionr%actionsr0rrrcsz1PermissionPolicyChecker.require_any..testr()r0r7rrr6r require_anybsz#PermissionPolicyChecker.require_anyN)__name__ __module__ __qualname____doc__r1r4r8rrrrr.Ssr.c Cst|ddddddhS)z\ Check if a user has any permission to add, edit, or otherwise manage any page. addZchangepublishZ bulk_deletelockunlock)r r5r%rrruser_has_any_page_permissionisrAcCs@|jddkrtddlm}ttdtd}|||dS)Nrrr)redirect_to_loginZWAGTAILADMIN_LOGIN_URLZwagtailadmin_login) login_url) rrrZdjango.contrib.auth.viewsrBgetattrrrZ get_full_path)rZauth_redirect_to_loginrCrrrreject_requestss rEcsfdd}|S)Nc sd|j}|jrt|S|dgr:zdt|drR|jt|j nt j t t |drt|f||}W5QRXn|f||}t|dr|jfdd}t|||_|W5QRW5QRWSQRXW5QRXWn2tk r8|jddkr,t|YSX|jddks\t|td t|S) Nzwagtailadmin.access_adminwagtail_userprofiler%renderc sXtFr.decorated_view..overridden_renderrrz.You do not have permission to access the admin)rZ is_anonymousrEZ has_permshasattrrFZget_preferred_languagel18nZ set_languageZget_current_time_zonerZ TIME_ZONErHr rrGtypes MethodTyperrrrr rr)rrrrrIrKr!rJrdecorated_views:     2z,require_admin_access..decorated_viewr)rrPrr!rrequire_admin_accesss 9rQ) rN functoolsrrMZ django.confrZdjango.core.exceptionsrZdjango.shortcutsrZ django.urlsrZdjango.utils.timezonerrHZdjango.utils.translationr rrr Zwagtail.log_actionsr Zwagtail.permissionsr rr#r)r-r.rArErQrrrrs(