B @Db&@sdddlmZddlmZddlmZddlmZGdddeZ Gddde Z Gd d d e Z d S) )unicode_literals)get_user_model) Permission)settingsc@szeZdZdZdddZddZddZd d Zd d Zdd dZ dddZ dddZ dddZ ddZ ddZddZdS) ModelBackendz9 Authenticates against settings.AUTH_USER_MODEL. Nc Ksz|dd}|dkrt}|dkr.||j}yb|j|}||r||r|jrd|_|j dk rv|j d7_ nd|_ |j dgd|SWn"|j k r| |dSXn|dkrrddl m}dd lm} dd lm} yf|jr|jd } | jj| d } | jj|| jd } n ||} | |rH|| rHd| _| SWn$tk rn}zdSd}~XYnXndSdS)NUserTypeuserr login_count)Z update_fieldsZemployee)r)Employee)Company company_name)Z name__iexact)emp_code company_id)getrUSERNAME_FIELD_default_managerget_by_natural_keyZcheck_passworduser_can_authenticateZis_staffZ login_typer Zsave DoesNotExistZ set_password django.confrmysite.personnel.modelsr Zmysite.cloud.modelsr Z CLOUD_VERSIONZPOSTobjectsid_get_emp_for_enterprise Exception)selfZrequestusernameZpasswordkwargsr UserModelrrr r r Zmatched_companyemper"1G:\easytimepro\master/mysite/accounts\backends.py authenticate sB           zModelBackend.authenticatecCs`ddlm}d|kr$|jj|d}n4|jj|d}ttdddkrX|sX|jj|tjd}|S) Nr)r @)Zemail)mobileZSUPPORT_MUL_COMPANYr )rr)rr rfiltergetattrrZDEFAULT_COMPANY_IDfirst)rrr r r"r"r#r7s z$ModelBackend._get_emp_for_enterprisecCs |jS)N)Zuser_permissionsall)ruser_objr"r"r#_get_user_permissionsEsz"ModelBackend._get_user_permissionscCs4|jj|jd}dd|D}tjj|d}|S)z get current user's all permissions by groupprofile :param user_obj: current user :return: all permission for current user )Z company__idcSsg|] }|jqSr")Z group_ptr_id).0Zprofiler"r"r# Usz7ModelBackend._get_group_permissions..)Z group__id__in)Zgroupprofile_setr*r'Zcurrent_companyrr)rr+Zgroup_profilesZ group_idsZall_permissionsr"r"r#_get_group_permissionsMsz#ModelBackend._get_group_permissionscCs|jr|js|dk rtSd|}t||sz|jr>tj}nt|d||}| dd }t ||tdd|Dt||S)z Returns the permissions of `user_obj` from `from_name`. `from_name` can be either "group" or "user" to return permissions from `_get_group_permissions` or `_get_user_permissions` respectively. Nz_%s_perm_cachez_get_%s_permissionsZcontent_type__app_labelZcodenamecss|]\}}d||fVqdS)z%s.%sNr")r-Zctnamer"r"r# isz0ModelBackend._get_permissions..) is_active is_anonymoussethasattrZ is_superuserrrr*r(Z values_listZorder_bysetattr)rr+obj from_nameZperm_cache_nameZpermsr"r"r#_get_permissionsYs  zModelBackend._get_permissionscCs|||dS)zt Returns a set of permission strings the user `user_obj` has from their `user_permissions`. r)r9)rr+r7r"r"r#get_user_permissionslsz!ModelBackend.get_user_permissionscCs|||dS)zr Returns a set of permission strings the user `user_obj` has from the groups they belong. group)r9)rr+r7r"r"r#get_group_permissionsssz"ModelBackend.get_group_permissionscCsH|jr|js|dk rtSt|dsB|||_|j|||jS)N _perm_cache)r2r3r4r5r:r=updater<)rr+r7r"r"r#get_all_permissionszs   z ModelBackend.get_all_permissionscCs|js dS||||kS)NF)r2r?)rr+permr7r"r"r#has_permszModelBackend.has_permcCsp|js dSx`||D]R}d|ks*td|d\}}||krJ||sd|dkr|dr|dkrdSqWdS)z` Returns True if user_obj has any operation permissions in the given app_label. F.z"The format of permissions is wrongZ transactionZiclockT)r2r?AssertionErrorsplitendswith)rr+Z app_labelZ model_namer@Z _app_labelZ op_and_modelr"r"r#has_model_op_permsszModelBackend.has_model_op_permscCs0t}y|jj|dS|jk r*dSXdS)N)pk)rrrr)ruser_idrr"r"r#get_users zModelBackend.get_usercCst|dd}|p|dkS)z{ Reject users with is_active=False. Custom user models that don't have that attribute are allowed. r2N)r()rrr2r"r"r#rs z"ModelBackend.user_can_authenticate)NN)N)N)N)N)__name__ __module__ __qualname____doc__r$rr,r/r9r:r<r?rArFrIrr"r"r"r#rs *     rc@seZdZddZdS)EmployeeBackendcCs6ddlm}y|jj|dS|jk r0dSXdS)Nr)r )rG)rr rrr)rrHr r"r"r#rIs  zEmployeeBackend.get_userN)rJrKrLrIr"r"r"r#rNsrNc@s,eZdZdZdZddZddZddZd S) RemoteUserBackenda This backend is to be used in conjunction with the ``RemoteUserMiddleware`` found in the middleware module of this package, and is used when the server is handling authentication outside of Django. By default, the ``authenticate`` method creates ``User`` objects for usernames that don't already exist in the database. Subclasses can disable this behavior by setting the ``create_unknown_user`` attribute to ``False``. TcCsv|sdSd}||}t}|jrJ|jjf|j|i\}}|rr||}n(y|j|}Wn|jk rpYnX|S)a The username passed as ``remote_user`` is considered trusted. This method simply returns the ``User`` object with the given username, creating a new ``User`` object if ``create_unknown_user`` is ``True``. Returns None if ``create_unknown_user`` is ``False`` and a ``User`` object with the given username is not found in the database. N) clean_usernamercreate_unknown_userrZ get_or_createrconfigure_userrr)rZ remote_userrrrZcreatedr"r"r#r$s   zRemoteUserBackend.authenticatecCs|S)z Performs any cleaning on the "username" prior to using it to get or create the user object. Returns the cleaned username. By default, returns the username unchanged. r")rrr"r"r#rPsz RemoteUserBackend.clean_usernamecCs|S)z Configures a user after creation and returns the updated user. By default, returns the user unmodified. r")rrr"r"r#rRsz RemoteUserBackend.configure_userN)rJrKrLrMrQr$rPrRr"r"r"r#rOs    rON) Z __future__rZdjango.contrib.authrZdjango.contrib.auth.modelsrrrobjectrrNrOr"r"r"r#s