graphql-python/graphene-django
1
1
Fork 0
mirror of https://github.com/graphql-python/graphene-django.git synced 2024-11-14 05:37:02 +03:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #110 from RadoRado/master

Browse Source 
Add `Adding login required` section to authorization
This commit is contained in:
Syrus Akbary 2017-02-11 16:14:03 -08:00 committed by GitHub
commit 441dde4781
1 changed files with 26 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
docs/authorization.rst
View File

@ -1,7 +1,7 @@
Authorization in Django Authorization in Django
======================= =======================
There are two main ways you may want to limit access to data when There are several ways you may want to limit access to data when
working with Graphene and Django: limiting which fields are accessible working with Graphene and Django: limiting which fields are accessible
via GraphQL and limiting which objects a user can access. via GraphQL and limiting which objects a user can access.
@ -108,3 +108,28 @@ method to your ``DjangoObjectType``.
if post.published or context.user == post.owner: if post.published or context.user == post.owner:
return post return post
return None return None
Adding login required
---------------------
If you want to use the standard Django LoginRequiredMixin_ you can create your own view, which includes the ``LoginRequiredMixin`` and subclasses the ``GraphQLView``:
.. code:: python
from django.contrib.auth.mixins import LoginRequiredMixin
from graphene_django.views import GraphQLView
class PrivateGraphQLView(LoginRequiredMixin, GraphQLView):
pass
After this, you can use the new ``PrivateGraphQLView`` in ``urls.py``:
.. code:: python
urlpatterns = [
# some other urls
url(r'^graphql', PrivateGraphQLView.as_view(graphiql=True, schema=schema)),
]
.. _LoginRequiredMixin: https://docs.djangoproject.com/en/1.10/topics/auth/default/#the-loginrequired-mixin