1

我正在尝试迁移我的模型以使用 Guardian 权限。在这一点上,我有:

class Data(models.Model):
    user = models.ForeignKey(settings.AUTH_USER_MODEL, on_delete=models.CASCADE)
    class Meta:
        permissions = (
            ('view', 'View'),
            ('edit', 'Edit'),
            ('owner', 'Owner'),
        )

我创建了一个添加新权限的迁移,在自定义迁移中,我尝试分配如下权限:

def assignDataPermissions(apps, schema_editor):
    Data = apps.get_model('api', 'Data')
    for data in Data.objects.all():
        assign_perm('api.owner', data.user, data)


class Migration(migrations.Migration):
    dependencies = [
        ('api', '0169_auto_20180304_1619'),
    ]

    operations = [
        migrations.RunPython(assignDataPermissions)
    ]

这失败了 guardian.exceptions.NotUserNorGroup: User/AnonymousUser or Group instance is required (got EmailUser object)

有没有更好/更合适的迁移到 Guardian 的方法?如果没有,我如何让它看到我的自定义用户类?

4

2 回答 2

2

我最终使用了更高级别的解决方法。在migration里面,data.user其实是一个对象__fake.EmailUser,whileget_user_model()返回custom_user.models.EmailUser。结果 Guardian 未能通过检查isinstance(identity, get_user_model())

我的解决方法(hack?)是EmailUser从数据库中显式获取与data.user. 像这样:

def assignDataPermissions(apps, schema_editor):
    Data = apps.get_model('api', 'Data')
    User = get_user_model()
    for data in Data.objects.all():
        user = User.objects.get(id=data.user_id)
        assign_perm('api.owner', user, data)
于 2018-03-05T15:22:37.037 回答
1

一般来说,在迁移中加载外部库很容易出错。

尝试这样的低级操作:

def assignDataPermissions(apps, schema_editor):
    Data = apps.get_model('api', 'Data')
    Permission = apps.get_model('auth', 'Permission')
    owner_api = Permission.objects.get(content_type__applabel='api', codename='owner')
    UserObjectPermission = apps.get_model('guardian', 'UserObjectPermission')
    for data in Data.objects.all():
        UserObjectPermission.objects.create(permission=owner_api, user=data.user, content_object=data)
于 2018-03-05T14:36:58.503 回答