^f$dZddlmZddlmZdZGddZGddeZGd d eZGd d Z Gd dZ GddZ Gddee Z Gdde ZGddeZGddeZGddeZGddeZGddeZGd d!eZGd"d#eZd$S)%z2 Provides a set of pluggable permission policies. )Http404) exceptions)GETHEADOPTIONSc,eZdZdZdZdZdZdZdS)OperationHolderMixinc.tt||SN OperandHolderANDselfothers L/var/www/html/env/lib/python3.11/site-packages/rest_framework/permissions.py__and__zOperationHolderMixin.__and__ sS$...c.tt||Sr r ORrs r__or__zOperationHolderMixin.__or__sRu---rc.tt||Sr r rs r__rand__zOperationHolderMixin.__rand__sS%...rc.tt||Sr rrs r__ror__zOperationHolderMixin.__ror__sR---rc,tt|Sr )SingleOperandHolderNOT)rs r __invert__zOperationHolderMixin.__invert__s"3---rN)__name__ __module__ __qualname__rrrrr rrr r s_///...///........rr ceZdZdZdZdS)rc"||_||_dSr )operator_class op1_class)rr'r(s r__init__zSingleOperandHolder.__init__s,"rcF|j|i|}||Sr )r(r')rargskwargsop1s r__call__zSingleOperandHolder.__call__!s,dnd-f--""3'''rNr!r"r#r)r.r$rrrrs2###(((((rrceZdZdZdZdS)r c0||_||_||_dSr )r'r( op2_class)rr'r(r2s rr)zOperandHolder.__init__'s,""rcb|j|i|}|j|i|}|||Sr )r(r2r')rr+r,r-op2s rr.zOperandHolder.__call__,sDdnd-f--dnd-f--""3,,,rNr/r$rrr r &s2### -----rr c eZdZdZdZdZdS)rc"||_||_dSr r-r4rr-r4s rr)z AND.__init__3rcn|j||o|j||Sr r-has_permissionr4rrequestviews rr<zAND.has_permission76 H # #GT 2 2 3 H # #GT 2 2 rcr|j|||o|j|||Sr )r-has_object_permissionr4rr>r?objs rrBzAND.has_object_permission=s: H * *7D# > > ? H * *7D# > > rNr!r"r#r)r<rBr$rrrr2sA        rrc eZdZdZdZdZdS)rc"||_||_dSr r7r8s rr)z OR.__init__Er9rcn|j||p|j||Sr r;r=s rr<zOR.has_permissionIr@rc|j||o|j|||p6|j||o|j|||Sr )r-r<rBr4rCs rrBzOR.has_object_permissionOsr H # #GT 2 2 C..wcBB  H # #GT 2 2 C..wcBB  rNrEr$rrrrDsA        rrc eZdZdZdZdZdS)rc||_dSr )r-)rr-s rr)z NOT.__init__Zs rc:|j|| Sr )r-r<r=s rr<zNOT.has_permission]s8**7D9999rc<|j||| Sr )r-rBrCs rrBzNOT.has_object_permission`s811'4EEEErNrEr$rrrrYsF:::FFFFFrrceZdZdS)BasePermissionMetaclassN)r!r"r#r$rrrOrOdsDrrOceZdZdZdZdZdS)BasePermissionzH A base class from which all permission classes should inherit. cdSzL Return `True` if permission is granted, `False` otherwise. Tr$r=s rr<zBasePermission.has_permissionm trcdSrSr$rCs rrBz$BasePermission.has_object_permissionsrTrN)r!r"r#__doc__r<rBr$rrrQrQhs< rrQ) metaclassceZdZdZdZdS)AllowAnyz Allow any access. This isn't strictly required, since you could use an empty permission_classes list, but it's useful because it makes the intention more explicit. cdS)NTr$r=s rr<zAllowAny.has_permissionstrNr!r"r#rVr<r$rrrYrYzs-rrYceZdZdZdZdS)IsAuthenticatedz4 Allows access only to authenticated users. cBt|jo |jjSr )booluseris_authenticatedr=s rr<zIsAuthenticated.has_permissionsGLBW\%BCCCrNr[r$rrr]r]s2DDDDDrr]ceZdZdZdZdS) IsAdminUserz, Allows access only to admin users. cBt|jo |jjSr )r_r`is_staffr=s rr<zIsAdminUser.has_permissionsGL:W\%:;;;rNr[r$rrrcrcs-<<<<zCDjangoModelPermissions.get_required_permissions..AAA$v AAAr_metarwrx perms_maprMethodNotAllowedrri model_clsr,s @rget_required_permissionsz/DjangoModelPermissions.get_required_permissionssb #2#/4    ' '-f55 5AAAA$.*@AAAArc>t|ds8t|dd'Jd|jjt|dr?|}|'Jd|jj|S|jS)N get_querysetquerysetz[Cannot apply {} on a view that does not set `.queryset` or have a `.get_queryset()` method.z{}.get_queryset() returned None)hasattrgetattrformat __class__r!rr)rr?rs r _querysetz DjangoModelPermissions._querysetst^,, *tZ..:: > &( ) );:; 4 ( ( ((**H''1889PQQ(''O}rct|ddrdS|jr|jjs |jrdS||}||j|j}|j|S)N_ignore_model_permissionsFT) rr`raauthenticated_users_onlyrrrimodel has_perms)rr>r?rpermss rr<z%DjangoModelPermissions.has_permissions 44e < < 4| |, 151N 5>>$''--gnhnMM|%%e,,,rN) r!r"r#rVrrrrr<r$rrrlrls  34567889I $ B B B    - - - - -rrlceZdZdZdZdS)$DjangoModelPermissionsOrAnonReadOnlyzj Similar to DjangoModelPermissions, except that anonymous users are allowed read-only access. FN)r!r"r#rVrr$rrrrs" %rrc:eZdZdZgggdgdgdgdgdZdZdZdS) DjangoObjectPermissionsa The request is authenticated using Django's object-level permissions. It requires an object-permissions-enabled backend, such as Django Guardian. It ensures that the user is authenticated, and has the appropriate `add`/`change`/`delete` permissions on the object using .has_perms. This permission can only be applied against view classes that provide a `.queryset` attribute. rmrnrorpc|jj|jjd||jvrt j|fd|j|DS)Nrvcg|]}|zSr$r$rzs rr}zKDjangoObjectPermissions.get_required_object_permissions..r~rrrs @rget_required_object_permissionsz7DjangoObjectPermissions.get_required_object_permissions s`"2#/4    ' '-f55 5AAAA$.*@AAAArcB||}|j}|j}||j|}|||sJ|jt vrt|d|}|||stdSdS)NrFT)rrr`rrirrjr) rr>r?rDrrr`r read_permss rrBz-DjangoObjectPermissions.has_object_permissions>>$''N |44W^YOO~~eS))  ~-- ==eYOOJ>>*c22  5trN)r!r"r#rVrrrBr$rrrrsn  34567889I B B BrrN)rV django.httprrest_frameworkrrjr rr rrrtyperOrQrYr]rcrgrlrrr$rrrs %%%%%%) ........"(((((.((( - - - - -( - - -        $        *FFFFFFFF     2D   6$     ~   DDDDDnDDD<<<<<.<<<          F-F-F-F-F-^F-F-F-R%%%%%+A%%%99999499999r