django - How do check an instance belongs to the login user? -

-

below how check model belongs user that's editing it. in views.py everything, it's bit repetitive, use lot! 

 # if have instance check belongs login.         if some_object.user != request.user:             return httpresponseforbidden()

so, i'm wondering how others address such functionality? have been thinking moving each on save method objects?

could have examples (with code) of how django developers this, there must better wayfor checking user can edit what, right?

i won't rush accepting answer, i'm interested in authoritative responses more experienced devs i'm new django.

thank you.

mixins work if using class based views... can create own doing 

class requireownershipmixin(object):     def get_object(self, queryset=none):         obj = super(requireownershipmixin, self).get_object(queryset)         if obj.user != self.request.user:             return none         return obj

and view this

class updatesomeobjectview(requireownershipmixin, updateview):     ...

this override get_object method return none if not owner of object. may need checks in get or post methods handle when none returned can return httpresponseforbidden

you can use class based views utilize get_object method.


Comments

Post a Comment

Popular posts from this blog

python - cx_oracle unable to find Oracle Client -

-
i have installd python 2.7.3 on linux 64 bit machine. have oracle 11g client(64bit) installed. , set oracle_home, path, ld_library_path, , installed cx_oracle 5.1.2 version python 2.7 & oracle 11g. ldd command on cx_oracle unable find libclntsh.so.11.1. i tried creating symlinks libclntsh.so.11.1 under /usr/lib64, updated oracle.conf file under /etc/ld.so.conf.d/. tried possible solutions have been discussed on issue on forums, no luck. please let me know missing. the issue me installed python, cx_oracle root oracle client installation done "oracle" user. got own oracle installation , fixed issue. later ran pyunicodeucs4_decodeutf16 issues python , had install python —enable-unicode=ucs4 option
Read more

Delphi XE2 Indy10 udp client-server interchange using SendBuffer-ReceiveBuffer -

-
i use delphi xe2 , indy10 udp protocol. can't receive server echo on client side if use receivebuffer method. got "socket error # 10040" although send small echo message server client. console application illustrate problem below. in advance. program project1; {$apptype console} {$r *.res} uses system.sysutils, idglobal, idbasecomponent, idcomponent, idsockethandle, idudpclient, idudpserver, idudpbase, idstack; type tudp_serv = class(tidudpserver) procedure udpsvudpread(athread: tidudplistenerthread; adata: tidbytes; abinding: tidsockethandle); end; var udpserver: tudp_serv; udpcl: tidudpclient; bsnd, brcv: tbytes; s: string; k: integer; //============================================================================== procedure tudp_serv.udpsvudpread(athread: tidudplistenerthread; adata: tidbytes; abinding: tidsockethandle); begin writeln(' server read: ' + tohex(adata, length(adata))); abinding sendto(peerip, peerport, adat...
Read more

Qt ActiveX WMI QAxBase::dynamicCallHelper: ItemIndex(int): No such property in -

-
i new windows programming. here goes code objiwbemlocator = new qaxobject("wbemscripting.swbemlocator"); objwmiservice = objiwbemlocator->querysubobject("connectserver(qstring&,qstring&)",qstring("."),qstring("root\\cimv2")); qaxobject* returnlist = objwmiservice->querysubobject("execquery(qstring&)", qstring("select * %1").arg(domain)); qaxobject* result = returnlist->querysubobject("itemindex(int)", 0); i getting error on runtime qt activex wmi qaxbase::dynamiccallhelper: itemindex(int): no such property in but itemindex method exists msdn says the itemindex method not work collections not contain swbemobjects, such swbemmethodset, swbemnamedvalueset, swbemprivilegeset, swbempropertyset, , swbemqualifierset. what selecting ? have tried iterating on collection ? plus need minimum windows vista itemindex method. hope helps
Read more