feat: use django-hijack to switch user accounts

Resolves #74
2026-03-03 03:17:07 +00:00 · 2021-02-08 14:40:37 +00:00
parent f4bd9a0cef
commit 9164ea8a05
5 changed files with 29 additions and 1 deletions
--- a/breccia_mapper/settings.py
+++ b/breccia_mapper/settings.py
@@ -158,6 +158,8 @@ THIRD_PARTY_APPS = [
    'rest_framework',
    'post_office',
    'bootstrap_datepicker_plus',
+    'hijack',
+    'compat',
 ]

 FIRST_PARTY_APPS = [
@@ -265,7 +267,7 @@ AUTH_USER_MODEL = 'people.User'

 LOGIN_URL = reverse_lazy('login')

-LOGIN_REDIRECT_URL = reverse_lazy('index')
+LOGIN_REDIRECT_URL = reverse_lazy('people:person.profile')

 # Internationalization
 # https://docs.djangoproject.com/en/2.2/topics/i18n/
@@ -353,6 +355,13 @@ CONSTANCE_CONFIG_FIELDSETS = {

 CONSTANCE_BACKEND = 'constance.backends.database.DatabaseBackend'

+
+# Django Hijack settings
+# See https://django-hijack.readthedocs.io/en/stable/
+
+HIJACK_USE_BOOTSTRAP = True
+
+
 # Bootstrap settings
 # See https://django-bootstrap4.readthedocs.io/en/latest/settings.html

--- a/breccia_mapper/templates/base.html
+++ b/breccia_mapper/templates/base.html
@@ -27,6 +27,10 @@
    {% load staticfiles %}
    <link rel="stylesheet" href="{% static 'css/global.css' %}">

+    <link rel="stylesheet"
+          type="text/css"
+          href="{% static 'hijack/hijack-styles.css' %}" />
+
    {% if 'javascript_in_head'|bootstrap_setting %}
        {% if 'include_jquery'|bootstrap_setting %}
            {# jQuery JavaScript if it is in head #}
@@ -144,6 +148,9 @@
            </div>
        {% endif %}

+        {% load hijack_tags %}
+        {% hijack_notification %}
+
        {% if request.user.is_authenticated and not request.user.has_person %}
            <div class="alert alert-info rounded-0" role="alert">
                <p class="text-center mb-0">
--- a/breccia_mapper/urls.py
+++ b/breccia_mapper/urls.py
@@ -25,6 +25,9 @@ urlpatterns = [
    path('select2/',
         include('django_select2.urls')),

+    path('hijack/',
+         include('hijack.urls', namespace='hijack')),
+
    path('',
         include('django.contrib.auth.urls')),

--- a/people/templates/people/person/detail_full.html
+++ b/people/templates/people/person/detail_full.html
@@ -42,6 +42,13 @@
            href="{% url 'password_change' %}?next={{ person.get_absolute_url }}">Change Password</a>
    {% endif %}

+    {% if request.user.is_superuser and person.user %}
+        <form style="display: inline;" action="/hijack/{{ person.user.pk }}/" method="post">
+            {% csrf_token %}
+            <button class="btn btn-warning" type="submit">Hijack {{ person.name }}</button>
+        </form>
+    {% endif %}
+
    <hr>

    <div id="map" style="height: 800px; width: 100%"></div>
--- a/requirements.txt
+++ b/requirements.txt
@@ -5,10 +5,12 @@ Django==2.2.10
 django-appconf==1.0.3
 django-bootstrap4==1.1.1
 django-bootstrap-datepicker-plus==3.0.5
+django-compat==1.0.15
 django-constance==2.6.0
 django-countries==5.5
 django-dbbackup==3.2.0
 django-filter==2.2.0
+django-hijack==2.2.1
 django-picklefield==2.1.1
 django-post-office==3.4.0
 django-select2==7.2.0