堆栈内存溢出
  简体   繁体   English

Django-rest-framework权限

[英]Django-rest-framework permissions

 原文  2017-05-04 17:13:34       django/ permissions/ django-rest-framework

问题描述

I have UserList 我有用户列表 

from rest_framework import permissions

class UserList(generics.ListCreateAPIView):
    queryset = User.objects.all()
    serializer_class = UserSerializer
    permission_classes = (permissions.IsAuthenticated,)

As you see I need access only to authenticated users, but I always have all permissions. 如您所见,我仅需要访问经过身份验证的用户,但我始终拥有所有权限。 Any idea? 任何想法?

1 个解决方案

解决方案1
 0  2017-05-05 21:15:38

The code looks fine. 代码看起来不错。 There are a few things you can try: 您可以尝试以下几种方法:

  1. As @Druhin mentioned, ensure you've attempted the request in a new incognito window to ensure you don't have a cookie or something authenticating you. 如@Druhin所述,请确保您已在新的隐身窗口中尝试了该请求,以确保您没有Cookie或对您进行身份验证的内容。
  2. Ensure you are reaching the correct URL. 确保您到达正确的URL。 Are you sure you don't have another view mapped to that specific URL? 您确定没有其他视图映射到该特定URL吗?
  3. As an even more solid method, use CURL to send the request. 作为一种更可靠的方法,请使用CURL发送请求。
  4. This is not your problem, but you can also configure default permissions for the rest framework. 这不是您的问题,但是您也可以为其余框架配置默认权限。

For example, in settings.py: 例如,在settings.py中: 

 REST_FRAMEWORK = {
      'DEFAULT_PERMISSION_CLASSES': (
        'rest_framework.permissions.IsAuthenticated',
     )
 }

If none of those options work, please post your settings and any other relevant code. 如果没有这些选项的工作,请发表您的设置和其他相关代码。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在视图集中创建的Django-rest-framework权限 - Django-rest-framework permissions for create in viewset 将权限添加到组 - Django-rest-framework - Add the permissions to the Group - Django-rest-framework API级别的Django组和权限(带有django-rest-framework) - Django groups and permissions in API level (with django-rest-framework) 如何在 django-rest-framework 中单元测试权限? - How to unit test permissions in django-rest-framework? angucomplete + Django-rest-framework - angucomplete + django-rest-framework Django-rest-framework和身份验证 - Django-rest-framework and authentication 如何在django-rest-framework自定义权限类中为每个条件设置不同的消息值? - How can I set a different message value per condition in a django-rest-framework custom permissions class? django-rest-framework 尽管有 AllowAny 权限,但在 POST、PUT、DELETE 上返回 403 响应 - django-rest-framework returning 403 response on POST, PUT, DELETE despite AllowAny permissions django-rest-framework APITestCase + assert等于时间戳 - django-rest-framework APITestCase + assertEqual of timestamp 使用django-rest-framework进行密码哈希处理? - Password hash using django-rest-framework?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM