Rule registry for django
Project description
This is a simple alternative to django-rules. The core difference is that it uses as registry that can be modified on runtime, instead of database models.
One of the goal is to enable developpers of external apps to make rules, depend on it, while allowing a project to override rules.
Example your_app/rules_light_registry.py:
# Everybody can read a blog post (for now!):
rules_light.registry['blog.post.read'] = True
# Require authentication to create a blog post, using a shortcut:
rules_light.registry['blog.post.create'] = rules_light.is_authenticated
def is_staff_or_mine(user, rule, obj):
return user.is_staff or obj.author == user
# But others shouldn't mess with my posts !
rules_light.registry['blog.post.update'] = is_staff_or_mine
rules_light.registry['blog.post.delete'] = is_staff_or_mineExample your_app/views.py:
@rules_light.class_decorator
class PostDetailView(generic.DetailView):
model = Post
@rules_light.class_decorator
class PostCreateView(generic.CreateView):
model = Post
@rules_light.class_decorator
class PostUpdateView(generic.UpdateView):
model = Post
@rules_light.class_decorator
class PostDeleteView(generic.DeleteView):
model = PostYou might want to read the tutorial for more.
What’s the catch ?
The catch is that this approach does not offer any feature to get secure querysets.
This means that the developper has to:
think about security when making querysets,
override eventual external app ListViews,
Requirements
Python 2.7+ (Python 3 supported)
Django 1.8+
Quick Install
Install module: pip install django-rules-light,
Add to settings.INSTALLED_APPS: rules_light,
Add in settings.MIDDLEWARE_CLASSES (or settings.MIDDLEWARE for Django 1.10+): rules_light.middleware.Middleware,
You might want to read the tutorial.
There is also a lot of documentation, from the core to the tools, including pointers to debug, log and test your security.
Contributing
Run tests with the tox command. Documented patches passing all tests have more chances getting merged in, see community guidelines for details.
Resources
You could subscribe to the mailing list ask questions or just be informed of package updates.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file django-rules-light-0.3.0.tar.gz.
File metadata
- Download URL: django-rules-light-0.3.0.tar.gz
- Upload date:
- Size: 16.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/1.12.1 pkginfo/1.4.2 requests/2.19.1 setuptools/40.9.0 requests-toolbelt/0.8.0 tqdm/4.26.0 CPython/3.7.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 8f016dcb948155c87a6ce9c1cd463429cb1af4240c4a9dcfc544f13ba00e7b02 |
|
| MD5 | 5d541761436158a1f7a5e6a0d552969e |
|
| BLAKE2b-256 | 80b2bb44f6262b285bf7aee1816e65e930abea35fc9b753a0ebc331412ab2490 |
