2 # This file is part of my.gpodder.org.
4 # my.gpodder.org is free software: you can redistribute it and/or modify it
5 # under the terms of the GNU Affero General Public License as published by
6 # the Free Software Foundation, either version 3 of the License, or (at your
7 # option) any later version.
9 # my.gpodder.org is distributed in the hope that it will be useful, but
10 # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
11 # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public
12 # License for more details.
14 # You should have received a copy of the GNU Affero General Public License
15 # along with my.gpodder.org. If not, see <http://www.gnu.org/licenses/>.
18 from functools
import wraps
20 from django
.http
import Http404
, HttpResponseRedirect
21 from django
.conf
import settings
24 def require_staff(protected_view
):
25 @wraps(protected_view
)
26 def wrapper(request
, *args
, **kwargs
):
28 staff_token
= settings
.STAFF_TOKEN
29 token_auth
= staff_token
is not None and \
30 staff_token
== request
.GET
.get('staff', None)
32 return protected_view(request
, *args
, **kwargs
)
34 if not request
.user
.is_authenticated():
35 return HttpResponseRedirect('/login/')
37 if request
.user
.is_staff
:
38 return protected_view(request
, *args
, **kwargs
)