rest_framework.permissions

module documentation

(source)

Provides a set of pluggable permission policies.

Class	`AllowAny`	Allow any access. This isn't strictly required, since you could use an empty permission_classes list, but it's useful because it makes the intention more explicit.
Class	`AND`	Undocumented
Class	`BasePermission`	A base class from which all permission classes should inherit.
Class	`BasePermissionMetaclass`	Undocumented
Class	`DjangoModelPermissions`	The request is authenticated using `django.contrib.auth` permissions. See: https://docs.djangoproject.com/en/dev/topics/auth/#permissions
Class	`DjangoModelPermissionsOrAnonReadOnly`	Similar to DjangoModelPermissions, except that anonymous users are allowed read-only access.
Class	`DjangoObjectPermissions`	The request is authenticated using Django's object-level permissions. It requires an object-permissions-enabled backend, such as Django Guardian.
Class	`IsAdminUser`	Allows access only to admin users.
Class	`IsAuthenticated`	Allows access only to authenticated users.
Class	`IsAuthenticatedOrReadOnly`	The request is authenticated as a user, or is a read-only request.
Class	`NOT`	Undocumented
Class	`OperandHolder`	Undocumented
Class	`OperationHolderMixin`	Undocumented
Class	`OR`	Undocumented
Class	`SingleOperandHolder`	Undocumented
Constant	`SAFE_METHODS`	Undocumented

SAFE_METHODS: tuple[str, ...] = (source) ¶

Undocumented

Value

('GET', 'HEAD', 'OPTIONS')