python - Django: Restrict static folder access to non logged-in users -


i trying restrict users, directly hit on absolute static image url path(www.xyz.com/static/img/sam.png) in browser , access it.

i tried following django docs:

https://docs.djangoproject.com/en/1.10/howto/deployment/wsgi/apache-auth/

but block images there in login page also(before valid user authenticated).

is there other efficient way restrict non logged-in users?

edit: had referred django: serving media behind custom url related nginx , not apache. , there difference b/w static , media content. question related static content

you can try answer here routing static url request own view (it tries use sendfile extension available in web servers) or use django whitenoise, whitenoise uses sendfile api server independent ( whether using nginx or apache) , production ready, extend whitenoise middleware , add checking there file restriction, sample code be

  django.http import httpresponseforbidden   whitenoise.middleware import whitenoisemiddleware   # sample code, can change use case   class protectedstaticfilemiddleware(whitenoisemiddleware):         def process_request(self, request):             # check user authentication             if condition_met(request):                return super(whitenoisemiddleware, self).process_request(request)             # condition false             return httpresponseforbidden("you not authorized")

note: serving files directly ( large files ) using python file chunks api not idea when in production ( ideas file.read() or fileresponse)


Comments

Post a Comment

Popular posts from this blog

Command prompt result in label. Python 2.7 -

i want put result(output) of shell command label. command works, label shows "0", however, in command prompt, result shown correctly, need showed in label. doing ubuntu. myg1 = button(root, text="rodyti informacija", command=lambda: gauti()) myg1.pack(side=bottom) def gauti(): imti = tekstas.get("1.0", "end-1c") info = subprocess.call("id '{imti}' ".format(imti=imti), shell=true) w = label(root, text= info) w.pack(side = bottom) subprocess.call() returns exit code of process created (in case 0 success). if want text output of process, should instead call subprocess.check_output() .
Read more

javascript - How do I use URL parameters to change link href on page? -

i change href value of link using url parameters. example: default <a id="dlink" href="link-1">link</a> but, when user goes https://url.com/?dlink=link-2 it swaps out link new link <a id="dlink" href="link-2">link</a> first need value url. if you're not using javascript framework can create function using jquery. please check get url parameter jquery or how query string values in js it. after that, element "a" id , set value there. $("#dlink").attr("href", hreffromparam);
Read more

amazon web services - AWS Route53 Trying To Get Site To Resolve To www -

so have domain nameservers pointed aws route 53. site hosted on ec2 instance , reachable resolves site.com, if input www.site.com. i'm curious how site resolve www.site.com. have under route53 domains hosted zone 2 additional record sets outside of ns , soa: a site.com ec2 elastic ip cname www.site.com ec2 public dns i can reach site using both site.com , www.site.com, resolve site.com. there way make if enter either, resolves www.site.com? at first, both should record set. a site.com ec2 elastic ip www.site.com ec2 elastic ip and need redirect setting in web server (nginx, apache, ..) following. (source: how redirect www non-www nginx on centos 7 ) redirect non-www www if want redirect users plain, non-www domain www domain, add server block: server { server_name example.com; return 301 $scheme://www.example.com$request_uri; } save , exit. configures nginx redirect requests "example.com" "www.example.com". not
Read more