mygpo/publisher/auth.py

   1 #
   2 # This file is part of my.gpodder.org.
   3 #
   4 # my.gpodder.org is free software: you can redistribute it and/or modify it
   5 # under the terms of the GNU Affero General Public License as published by
   6 # the Free Software Foundation, either version 3 of the License, or (at your
   7 # option) any later version.
   8 #
   9 # my.gpodder.org is distributed in the hope that it will be useful, but
  10 # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
  11 # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public
  12 # License for more details.
  13 #
  14 # You should have received a copy of the GNU Affero General Public License
  15 # along with my.gpodder.org. If not, see <http://www.gnu.org/licenses/>.
  16 #
  17
  18 from functools import wraps
  19
  20 from django.http import HttpResponseRedirect
  21
  22 from mygpo.publisher.models import PublishedPodcast
  23
  24
  25 def require_publisher(protected_view):
  26     @wraps(protected_view)
  27     def wrapper(request, *args, **kwargs):
  28
  29         if not request.user.is_authenticated():
  30             return HttpResponseRedirect('/login/')
  31
  32         if is_publisher(request.user):
  33             return protected_view(request, *args, **kwargs)
  34
  35         return HttpResponseRedirect('/')
  36
  37     return wrapper
  38
  39
  40 def is_publisher(user):
  41     """
  42     checks if the given user has publisher rights,
  43     ie he is either set as the publisher of at least one podcast,
  44     or he has the staff flag set
  45     """
  46
  47     if not user.is_authenticated():
  48         return False
  49
  50     if user.is_staff:
  51         return True
  52
  53     if PublishedPodcast.objects.filter(publisher=user).exists():
  54         return True
  55
  56     return False