26 lines
771 B
Python
26 lines
771 B
Python
from django.core.exceptions import PermissionDenied
|
|
from storage.authentication import has_permission
|
|
|
|
|
|
def is_authorized_or_in_lan_middleware(get_response):
|
|
# One-time configuration and initialization.
|
|
login_paths_to_ignore = [
|
|
'/admin/login/'
|
|
'/complete/'
|
|
]
|
|
|
|
def middleware(request):
|
|
if request.user.is_authenticated:
|
|
return get_response(request)
|
|
is_within_lan = has_permission(request)
|
|
if is_within_lan:
|
|
return get_response(request)
|
|
else:
|
|
for login_path in login_paths_to_ignore:
|
|
if request.path.startswith(login_path):
|
|
return get_response(request)
|
|
else:
|
|
raise PermissionDenied()
|
|
|
|
return middleware
|