2021-11-04 23:09:35 +08:00
|
|
|
from extensions.exceptions import NotAuthenticated, ValidationError
|
|
|
|
|
from rest_framework.permissions import BasePermission
|
|
|
|
|
from apps.system.models import Permission, User
|
|
|
|
|
import pendulum
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class IsAuthenticated(BasePermission):
|
|
|
|
|
|
|
|
|
|
def has_permission(self, request, view):
|
|
|
|
|
if not isinstance(request.user, User):
|
|
|
|
|
raise NotAuthenticated
|
|
|
|
|
|
|
|
|
|
if (expiry_time := request.user.team.expiry_time) < pendulum.now():
|
|
|
|
|
raise ValidationError(f'已到期, 到期日期: {expiry_time}')
|
|
|
|
|
|
2021-11-08 17:27:57 +08:00
|
|
|
if not (request.user.is_manager or request.user.is_manager.is_active):
|
|
|
|
|
raise ValidationError('账号未激活, 无法执行任何操作')
|
|
|
|
|
|
2021-11-04 23:09:35 +08:00
|
|
|
return True
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class IsManagerPermission(IsAuthenticated):
|
|
|
|
|
|
|
|
|
|
def has_permission(self, request, view):
|
|
|
|
|
return super().has_permission(request, view) and request.user.is_manager
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class InterfacePermission(BasePermission):
|
|
|
|
|
|
|
|
|
|
def has_permission(self, request, view):
|
|
|
|
|
if request.user.is_manager:
|
|
|
|
|
return True
|
|
|
|
|
|
|
|
|
|
roles = request.user.roles.all()
|
|
|
|
|
if Permission.objects.filter(roles__in=roles, code=self.code).exists():
|
|
|
|
|
return True
|
|
|
|
|
return False
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
__all__ = [
|
|
|
|
|
'BasePermission', 'IsAuthenticated', 'IsManagerPermission', 'InterfacePermission',
|
|
|
|
|
]
|
