Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/django-guardian/django-guardian

Per object permissions for Django
https://github.com/django-guardian/django-guardian

hacktoberfest

Last synced: 17 days ago
JSON representation

Per object permissions for Django

Awesome Lists containing this project

README 

        
# django-guardian



[![Tests](https://github.com/django-guardian/django-guardian/workflows/Tests/badge.svg?branch=devel)](https://github.com/django-guardian/django-guardian/actions/workflows/tests.yml)

[![PyPI version](https://img.shields.io/pypi/v/django-guardian.svg)](https://pypi.python.org/pypi/django-guardian)

[![Python versions](https://img.shields.io/pypi/pyversions/django-guardian.svg)](https://pypi.python.org/pypi/django-guardian)



`django-guardian` is an implementation of _per-object permissions_ on top

of Django’s authorization backend. Read an introduction to per-object permissions [on djangoadvent articles](https://github.com/djangoadvent/djangoadvent-articles/blob/master/1.2/06_object-permissions.rst).



## Documentation



Online documentation is available at [https://django-guardian.readthedocs.io/](https://django-guardian.readthedocs.io/).



## Installation



To install `django-guardian` into your project run:



```bash

uv add django-guardian

```

> **TIP**: Not using a package manager like `uv` or `poetry` for your django project? You probably should try them :). In the meantime, `pip install django-guardian` works just fine too.



## Configuration



We need to hook `django-guardian`` into our project.



1. Put `guardian` into your `INSTALLED_APPS` at settings module:



```python

    INSTALLED_APPS = (

     ...

     'guardian',

    )

```



2. Add extra authorization backend to your `settings.py`:



```py

    AUTHENTICATION_BACKENDS = (

        'django.contrib.auth.backends.ModelBackend',

        'guardian.backends.ObjectPermissionBackend',

    )

```



3. Create `guardian` database tables by running::



```

     python manage.py migrate

```



## Usage



After installation and project hooks we can finally use object permissions

with Django.



Lets start really quickly:



```py

      >>> from django.contrib.auth.models import User, Group

      >>> jack = User.objects.create_user('jack', '[email protected]', 'topsecretagentjack')

      >>> admins = Group.objects.create(name='admins')

      >>> jack.has_perm('change_group', admins)

      False

      >>> from guardian.shortcuts import assign_perm

      >>> assign_perm('change_group', jack, obj=admins)

      

      >>> jack.has_perm('change_group', admins)

      True

```



Of course our agent jack here would not be able to _change_group_ globally:



```py



    >>> jack.has_perm('change_group')

    False

```



## Admin integration



Replace `admin.ModelAdmin` with `GuardedModelAdmin` for those models

which should have object permissions support within admin panel.



For example:



```py

    from django.contrib import admin

    from myapp.models import Author

    from guardian.admin import GuardedModelAdmin



    # Old way:

    #class AuthorAdmin(admin.ModelAdmin):

    #    pass



    # With object permissions support

    class AuthorAdmin(GuardedModelAdmin):

        pass



    admin.site.register(Author, AuthorAdmin)

```



## Django Unfold integration



Users of [`django-unfold`](https://unfoldadmin.com/) will find that `guardian` is [supported out of the box via a `contrib` module](https://unfoldadmin.com/docs/integrations/django-guardian/).