contract.py 文件源码

def dispatch(self, request, *args, **kwargs):
        '''
        Can only see contracts for own gym
        '''
        if not request.user.is_authenticated():
            return HttpResponseForbidden()

        contract = self.get_object()
        if contract.member.userprofile.gym_id != request.user.userprofile.gym_id:
            return HttpResponseForbidden()
        return super(DetailView, self).dispatch(request, *args, **kwargs)