mirror of
https://github.com/goauthentik/authentik
synced 2026-05-01 20:07:20 +02:00
f7e23295ed
* move imports * core: add digraph group hierarchy * move to permissions from Group or User to Role * set group parents on frontend * do not serialize `GroupParentageNode` directly * core: enforce unique group name on database level Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use group parents in LDAP provider * add user-role relationship control to frontend * move materialized view to be more discoverable * add guardian to mypy exceptions * make `Role` a `ManagedModel` * fixup! make `Role` a `ManagedModel` * simplify `get_objects_for_user` * fix flaky unit test * rename `django-guardian` fork to `ak-guardian` * add tests around users/groups/roles * remove unused guardian config variable * simplify guardian file structure * clean up frontend * initial docs * remove `mode` from `InitialPermissions` This is no longer needed, since users no longer directly have permissions. * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy * clean up docs for managing permissions * addendums from docs review * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy * tweaks * dewi and tana edits to docs * tweak * truly final tweaks, for now * relabel Role Permissions table * clarify button label * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy * merge migrations * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Tana M Berry <tana@goauthentik.io>
21 lines
813 B
Python
21 lines
813 B
Python
from django.conf import settings
|
|
from django.core.checks import Tags, Warning, register
|
|
|
|
|
|
@register(Tags.compatibility)
|
|
def check_settings(app_configs, **kwargs):
|
|
"""Check that settings are implemented properly
|
|
:param app_configs: a list of apps to be checks or None for all
|
|
:param kwargs: keyword arguments
|
|
:return: a list of errors
|
|
"""
|
|
checks = []
|
|
if "guardian.backends.ObjectPermissionBackend" not in settings.AUTHENTICATION_BACKENDS:
|
|
msg = (
|
|
"Guardian authentication backend is not hooked. You can add this in settings as eg: "
|
|
"`AUTHENTICATION_BACKENDS = ('django.contrib.auth.backends.ModelBackend', "
|
|
"'guardian.backends.ObjectPermissionBackend')`."
|
|
)
|
|
checks.append(Warning(msg, id="guardian.W001"))
|
|
return checks
|