python - Best way to handle multiple type of users in Django -


in project have deal different type of users e.g. costumers , employers. each type of user have own fields , permissions: costumer can buy things whereas employer can not.

i have read django docs , looks there 2 options:

  1. costumize abstractuser class , adding all fields of costumers , employers. use permission system grant/revoke permission or create group each type of user. downside here there unused fields.

  2. adopt proxy model: 

     django.contrib.auth.models import user django.db import models
      
    class costumer(models.model):     user = models.onetoonefield(user, on_delete=models.cascade)
      
    class meta:     db_table = 'costumers'     permissions = (         ("access_this", "user may access this"),     )     ordering = [] 
      
    class employee(models.model):     user = models.onetoonefield(user, on_delete=models.cascade)
      
    class meta:     db_table = 'employers'     permissions = (         ("access_that", "user may access that"),     )     ordering = []
    case seems more reasonable don't know how deal permissions. consider i'd use @permission_required instead of checking type (if user has specific field) because seems more legit django system.

so in end, best way approach such scenario?

the first solution better.

the downside here there unused fields.

i disagree this, don't have store fields within user model. also, if you're talking 5 fields example, doesn't matter.

you can extend abtractuser , use composition; don't have put fields there:

class user(abstractuser):      email = ...      ...      # employer, let's want save company details      company = models.foreignkey('myapp.company', null=true, blank=true)      ...      # customer      customer_details = models.foreignkey('...')

this way record user_type if want or deduce type foreign key (if there company, it's employer).

to more model, need know differentiate employer customer in application. note solution, instance of user both.

concerning permissions, feel it's separate problem; i'd recommend sort last. if design pick close reality , features working; adding custom permissions easy.


Comments

Post a Comment

Popular posts from this blog

javascript - jQuery: Add class depending on URL in the best way -

i have html progress meter: <div class="col-md-3" style="margin-left: -20px;"> <div class="progress-pos active" id="progess-1"> <div class="progress-pos-inner"> login </div> </div> </div> <div class="col-md-3 progress-pos-container"> <div class="progress-pos" id="progess-2"> <div class="progress-pos-inner"> scan items </div> </div> </div> <div class="col-md-3 progress-pos-container"> <div class="progress-pos" id="progess-3"> <div class="progress-pos-inner"> confirm address </div> </div> </div> <div class="col-md-3 progress-pos-container"> <div class="progress-pos" id="progess-4"> <div class="progress-pos-in...
Read more

caching - How to check if a url path exists in the service worker cache -

i need check if particular url path exists in service worker cache. example, suppose url is: /myserviceworker/service?a=110&b=70 this url exists in cache, there many of them different values of , b. now, suppose want refresh of these urls, how can that? i want know how access key values service worker cache. if know key, plan follows: var url = new url(key); if(url.pathname === "\/myserviceworker/service") refetch key but not sure how cache key , in format is. mean, string or url? cache api has match() method returns promise resolving in response object if match or undefined if no match exists. second parameter object can specify ignoresearch not take account url parameters. the ignoresearch option supported firefox ( chrome status here ). in other hand, retrieve cache entries, can use keys() method.
Read more

Redirect to a HTTPS version using .htaccess -

i need modify .htaccess file redirect urls https version without "www". http://example.com --> https://example.com http://www.example.com --> https://example.com https://www.example.com --> https://example.com this how .htaccess file looks like: rewriteengine on rewritecond %{request_filename} !-d rewritecond %{request_filename} !-f rewriterule ^(.*)$ redirect.php?id=$1&page=$2 [qsa,l] what modifications need make .htaccess in order forward https without "www"? it depends on doing current code. looks file called redirect trying display php page seo friendly url. think might confusing people. anyway, need , force https without www, need 1 more rule above. also second rule needs two capture groups in rewriterule test string because wanting 2 different values using $1 , $2 references. rewriteengine on #rediect www non www and/or http https --- combinations. rewritecond %{http_host} !^example\.com [nc,or] rewritecond %{https} !^...
Read more