h$ddlZddlmZddlmZddlmZmZmZddl m Z ddl m Z eZ GddZGd d eZGd d eZGd deZGddeZdS)N)get_user_model) Permission)ExistsOuterRefQ)RemovedInDjango50Warning)func_supports_parameterc:eZdZdZdZddZddZddZddZdS) BaseBackendc dSN)selfrequestkwargss [/var/www/surfInsights/venv3-11/lib/python3.11/site-packages/django/contrib/auth/backends.py authenticatezBaseBackend.authenticate tcdSr r)ruser_ids rget_userzBaseBackend.get_userrrNctSr setruser_objobjs rget_user_permissionsz BaseBackend.get_user_permissions uu rctSr rrs rget_group_permissionsz!BaseBackend.get_group_permissionsr rcbh||||||SN)r)rr"rs rget_all_permissionszBaseBackend.get_all_permissionssB  & &xS & 9 9  ' 'c ' : :  rc4||||vSr$)r%)rrpermrs rhas_permzBaseBackend.has_perms t//c/BBBBrr ) __name__ __module__ __qualname__rrrr"r%r(rrrr r s    CCCCCCrr cteZdZdZddZdZdZdZdZddZ dd Z dfd Z dfd Z d Z ddZdZxZS) ModelBackendz9 Authenticates against settings.AUTH_USER_MODEL. Nc ^||tj}||dS tj|}||r||r|SdSdS#tj$r%t|YdSwxYwr ) get UserModelUSERNAME_FIELD_default_managerget_by_natural_keycheck_passworduser_can_authenticate DoesNotExist set_password)rrusernamepasswordrusers rrzModelBackend.authenticate(s  zz)":;;H  x/ F -@@JJD ""8,, 1K1KD1Q1Q       % / / / KK $ $X . . . . . . /sA880B,+B,c$t|ddS)z{ Reject users with is_active=False. Custom user models that don't have that attribute are allowed. is_activeT)getattrrr:s rr5z"ModelBackend.user_can_authenticate7s t[$///rc4|jSr )user_permissionsall)rrs r_get_user_permissionsz"ModelBackend._get_user_permissions>s(,,...rctjd}d|z}t jjdi||iS)Ngroupsz group__%sr)r_meta get_fieldrelated_query_namerobjectsfilter)rruser_groups_fielduser_groups_querys r_get_group_permissionsz#ModelBackend._get_group_permissionsAsW*,,2<z0ModelBackend._get_permissions..Ws'+W+W+WXRrrr44,@+W+W+Wr) r< is_anonymousrhasattr is_superuserrrHrAr= values_listorder_bysetattr)rrr from_nameperm_cache_namepermss r_get_permissionszModelBackend._get_permissionsFs ! X%: co55L*Y6x11 $ S"*..00H&;i&GHHRR%%&?LLUUWWE /+W+WQV+W+W+W   x111rc0|||dS)zs Return a set of permission strings the user `user_obj` has from their `user_permissions`. r:r_rs rrz!ModelBackend.get_user_permissions[s $$XsF;;;rc0|||dS)zq Return a set of permission strings the user `user_obj` has from the groups they belong. grouprars rr"z"ModelBackend.get_group_permissionsbs $$XsG<<#>x#H#HH ##rcZ|jo#t|||Sr$)r<rfr()rrr'rrgs rr(zModelBackend.has_permps*!Oegg&6&6x3&6&O&OOrcn|jo-tfd||DS)zU Return True if user_obj has any permissions in the given app_label. c3ZK|]%}|d|dkV&dS)NrQ)index)rRr' app_labels r z0ModelBackend.has_module_perms..wsQ* *  "4::c??" #y 0* * * * * * r)r<anyr%)rrrls `rhas_module_permszModelBackend.has_module_permsssU! c* * * * 00::* * * ' '  rTct|tr7 |d\}}nA#t$rtdwxYwt|tst d|t jSttdttdz}t|tr|t|j z}n|t|| z}ttj |}|r|td z}||t| z}t j|S) z Return users that have permission "perm". By default, filter out inactive users and include superusers. rQzDPermission name should be in the form app_label.permission_codename.z>The `perm` argument must be a string or a permission instance.Npk) group__user)r:rq)rOrNT)rX)r<) isinstancestrsplit ValueErrorr TypeErrorr0r2nonerrrqrrHrI) rr'r<include_superusersrrlrO permission_quser_qs r with_permzModelBackend.with_perm|s dC  &*jjoo# 88    5  D*-- P  ?-2244 4Xd^^444qhtnn7M7M7MM dJ ' ' T AMMM )LL AxSSS SL *11,??@@  + aT*** *F  a),,, ,F)00888s 0A c tj|}n#tj$rYdSwxYw||r|ndS)Nrs)r0r2r/r6r5)rrr:s rrzModelBackend.get_usersd -11W1==DD%   44 11$77AttTAs #66)NNr )TTN)r)r*r+__doc__rr5rBrLr_rr"r%r(ror}r __classcell__)rgs@rr-r-#s     000///JJJ 222*<<<<====$$$$$$PPPPPP   !9!9!9!9FBBBBBBBrr-ceZdZdZdS)AllowAllUsersModelBackendcdSNTrr>s rr5z/AllowAllUsersModelBackend.user_can_authenticaterrNr)r*r+r5rrrrr#rrc*eZdZdZdZdZdZddZdS)RemoteUserBackenda This backend is to be used in conjunction with the ``RemoteUserMiddleware`` found in the middleware module of this package, and is used when the server is handling authentication outside of Django. By default, the ``authenticate`` method creates ``User`` objects for usernames that don't already exist in the database. Subclasses can disable this behavior by setting the ``create_unknown_user`` attribute to ``False``. Tc|sdSd}d}||}|jr&tjjditj|i\}}n6 tj|}n#tj$rYnwxYwt|j dr| |||}nAtj d|j j dt|r| ||}||r|ndS) ai The username passed as ``remote_user`` is considered trusted. Return the ``User`` object with the given username. Create a new ``User`` object if ``create_unknown_user`` is ``True``. Return None if ``create_unknown_user`` is ``False`` and a ``User`` object with the given username is not found in the database. NFcreated)rz1`created=True` must be added to the signature of z.configure_user().)categoryr)clean_usernamecreate_unknown_userr0r2 get_or_creater1r3r6r configure_userwarningswarnrgr+rr5)rr remote_userrr:r8s rrzRemoteUserBackend.authenticatesV  F&&{33  # %6D+X6MD''  1DDXNN)     #4#6 B B :&&wg&FFDD MC>.CCC1      :**7D9911$77AttTAs A,,A>=A>c|S)z Perform any cleaning on the "username" prior to using it to get or create the user object. Return the cleaned username. By default, return the username unchanged. r)rr8s rrz RemoteUserBackend.clean_usernames rc|S)zp Configure a user and return the updated user. By default, return the user unmodified. r)rrr:rs rrz RemoteUserBackend.configure_users  rN)T)r)r*r+rrrrrrrrrrs\  (B(B(BTrrceZdZdZdS)AllowAllUsersRemoteUserBackendcdSrrr>s rr5z4AllowAllUsersRemoteUserBackend.user_can_authenticaterrNrrrrrrrrr)rdjango.contrib.authrdjango.contrib.auth.modelsrdjango.db.modelsrrrdjango.utils.deprecationrdjango.utils.inspectr r0r r-rrrrrrrs~......1111110000000000======888888 N   CCCCCCCC.ABABABABAB;ABABABH  HHHHH HHHV%6r