jumpserver/apps/ops/api/permissions.py

# ~*~ coding: utf-8 ~*~
from __future__ import unicode_literals

from rest_framework import permissions


class AdminUserRequired(permissions.BasePermission):
    """
    Custom permission to only allow admin user to access the resource.
    """

    def has_object_permission(self, request, view, obj):
        # Read permissions are allowed to any request,
        # so we'll always allow GET, HEAD or OPTIONS requests.
        if request.method in permissions.SAFE_METHODS:
            return True

        # Write permissions are only allowed to the admin role.
        return request.user.is_staff
[future] 增加503和501的自定义异常 2016-11-20 08:23:45 +00:00			`# ~~ coding: utf-8 ~~`
			`from __future__ import unicode_literals`

			`from rest_framework import permissions`


			`class AdminUserRequired(permissions.BasePermission):`
			`"""`
			`Custom permission to only allow admin user to access the resource.`
			`"""`

			`def has_object_permission(self, request, view, obj):`
			`# Read permissions are allowed to any request,`
			`# so we'll always allow GET, HEAD or OPTIONS requests.`
			`if request.method in permissions.SAFE_METHODS:`
			`return True`

			`# Write permissions are only allowed to the admin role.`
			`return request.user.is_staff`