Merge pull request #110 from RadoRado/master

Add `Adding login required` section to authorization
2024-11-11 04:07:57 +03:00 · 2017-02-11 16:14:03 -08:00 · 2017-02-11 16:14:03 -08:00 · 441dde4781
commit 441dde4781
parent 5d6c7f2dc3 b63cb772e4
1 changed files with 26 additions and 1 deletions
--- a/docs/authorization.rst
+++ b/docs/authorization.rst
@ -1,7 +1,7 @@
 Authorization in Django
 =======================

-There are two main ways you may want to limit access to data when
+There are several ways you may want to limit access to data when
 working with Graphene and Django: limiting which fields are accessible
 via GraphQL and limiting which objects a user can access.

@ -108,3 +108,28 @@ method to your ``DjangoObjectType``.
            if post.published or context.user == post.owner:
                return post
            return None
+
+Adding login required
+---------------------
+
+If you want to use the standard Django LoginRequiredMixin_ you can create your own view, which includes the ``LoginRequiredMixin`` and subclasses the ``GraphQLView``:
+
+.. code:: python
+
+    from django.contrib.auth.mixins import LoginRequiredMixin
+    from graphene_django.views import GraphQLView
+
+
+    class PrivateGraphQLView(LoginRequiredMixin, GraphQLView):
+        pass
+
+After this, you can use the new ``PrivateGraphQLView`` in ``urls.py``:
+
+.. code:: python
+
+    urlpatterns = [
+      # some other urls
+      url(r'^graphql', PrivateGraphQLView.as_view(graphiql=True, schema=schema)),
+    ]
+
+.. _LoginRequiredMixin: https://docs.djangoproject.com/en/1.10/topics/auth/default/#the-loginrequired-mixin