How set permission for specific app in Django Rest Framework

Question

I have two REST application in my Django project:

api - should be AllowAny and ReadOnly!
apicrm - should be rest_framework.permissions.IsAuthenticated

How to set this permission for whole app in Django Rest Framework?

score 0 · Answer 1 · answered Sep 20 '17 at 18:15

0

Make local confi like:

api

class apiView(viewsets.ModelViewSet) .... {
  permission_classes = ()
  authentication_classes = ()
}

apicrm

class apiView(viewsets.ModelViewSet) .... {
  permission_classes = (IsAuthenticated)
  authentication_classes = (JSONWebTokenAuthentication,)
}

answered Sep 20 '17 at 18:15

mcmartin

106
3

Do you mean make it for every ViewSet in applications ? – yestema Sep 20 '17 at 18:22

score 0 · Answer 2 · answered Sep 20 '17 at 20:00

I don't think there is any global settings to define permissions for apps. What I can think here is to make a base view class with the appropriate permissions classes.

Example:

api app

class BaseApiViewSet(viewsets.ModelViewSet):
    permission_classes = (AllowAny, )

# inherit BaseApiViewSet in all other viewsets
class ViewSet1(BaseApiViewSet):
    # code as it is

apicrm app

class BaseApiCrmViewSet(viewsets.ModelViewSet):
    permission_classes = (IsAuthenticated, )

# similary, inherit from BaseApiCrmViewSet in all other viewsets

How set permission for specific app in Django Rest Framework

2 Answers2