注册    登录
关注
Py学习  »  Django

筛选筛选器:按用户权限限制Django管理筛选器中的选项

mt_ • 4 年前 • 135 次点击  

好的,现在我可以限制变更表单中可用的选项,如下所示: 

def formfield_for_foreignkey(self, db_field, request, **kwargs):
    from login.models import Room
    groups = [group.name for group in request.user.groups.all()]
    if 'principal' in groups:
        schoolname = request.user.principal.school.name
        if db_field.name == 'room':
            print("match")
            kwargs['queryset'] = Room.objects.filter(school__name=schoolname)
    return super().formfield_for_foreignkey(db_field, request, **kwargs)

list_display = ('surname','givennames', 'room')
list_filter = ('room',)

也就是说,上面成功地显示了在他或她的学校注册的只使用用户的学生。

我的问题是,用户仍然可以在列表中看到他们没有连接到的学校的房间,而这个列表中的“过滤器”忽略了“formfield”中的“foreignkey”。

因此,这个下拉列表显示了该地区所有学校的数百个教室,而不是将半打教室视为过滤器上的选项。我试图找到一个与之相当简单的答案,但什么也没有呈现出来。我想要的是像formfield_for_foreignkey应用于我的过滤器选项。

我要过滤过滤器的选项!难怪谷歌不帮忙!

这很难说清楚,所以我会重复一遍,希望在我的冗余中有一些清晰。

我正在尝试筛选可供用户筛选的选项,仅筛选用户具有写入权限的选项。我想要一些学校校长可以过滤学生名单的房间;相反,我有很多房间,其中大部分都不适用,因为校长没有读写特权。

在我的经验水平上,我发现那些可能相关的例子对我来说是相当不透明的。

有什么简单的食谱吗?谢谢!

Python社区是高质量的Python/Django开发社区
本文地址:http://www.python88.com/topic/38533
Reply
 
135 次点击  
文章 [ 1 ]  |  最新文章 4 年前
mt_
Reply   •   1 楼
mt_    5 年前

这是我的完整解决方案; 

class StudentAdmin(admin.ModelAdmin):

    def get_queryset(self,request):
        # if principal (not district user) only show students
        # whose classroom is in principal's school

        qs = super(StudentAdmin, self).get_queryset(request)
        if request.user.is_superuser:
            return qs
        else:
            groups = [group.name for group in request.user.groups.all()]
            if 'principal' in groups:
                school = request.user.principal.school
                return qs.filter(room__school=school)
            else:
                return qs

    def formfield_for_foreignkey(self, db_field, request, **kwargs):
        # if principal (not district administrator) 
        # limit transfer to within principal's school

        from login.models import Room
        groups = [group.name for group in request.user.groups.all()]
        if 'principal' in groups:
            schoolname = request.user.principal.school.name
            print(db_field)
            print(type(db_field))
            if db_field.name == 'room':
                print("match")
                kwargs['queryset'] = Room.objects.filter(school__name=schoolname)
        return super().formfield_for_foreignkey(db_field, request, **kwargs)


    class CustomRoom(admin.SimpleListFilter):
        # if principal (not district user)
        # only offer filter to classrooms in principal's school  

        title = 'Classroom'
        parameter_name = 'classroom'

        def lookups(self,request,model_admin):
            from login.models import Room,School
            groups = [group.name for group in request.user.groups.all()]
            if 'principal' in groups:
                school = request.user.principal.school
                rooms = Room.objects.filter(school=school)
                return ((room.id,room.roomno) for room in rooms)
            else:
                rooms = Room.objects.all()
                return ((room.id,room.roomno) for room in rooms)

        def queryset(self,request,queryset):
            selected = self.value()

            # WAS return queryset.filter(room=selected)
            # this does not handle All case correctly 

            if selected:
                return queryset.filter(room=selected)
            else:
                 return queryset


    list_display = ('surname','givennames', 'room')
    list_filter=('enrolled',CustomRoom,)

# Register the admin class with the associated model
admin.site.register(Student, StudentAdmin)

比我想的要凌乱一点,但如果你把它看成是三个独立的小步,那就不算太可怕了。

登录后回复
关于   移动版   ·   三行代码   ·   今天看啥   ·   Code   ·   link之家   ·   卧龙搜索   ·   藏经阁   ·   小百科
Py学习 - 专注于Python技术发展的社区(原Django社区)
沪ICP备11025650号