Django social auth disable for admin

Question

In python social auth library:

I am making a social auth for my django project. I want to disable social auth for admin. how it works by default:

social auth url is visited and permissions granted
new Python Social Auth › User social auths object is created for Admin
this social account logs in admin

How I want it to work:

social auth url is visited and permissions granted
new Python Social Auth › User social auths object is created along with new regular user, as if admin was not logged in
this social account logs in a regular user

Is there an elegant way of doing this? Overriding the least amount of pipeline functions as possible.

omab omab · Accepted Answer · 2018-04-04T10:59:16

The way to solve this is to directly forbid admin users from using the social authentication process, for that you need a custom function in the pipeline that would raise AuthForbidden if the user is an admin.

This function should be after the social_user step to ensure that already associated accounts are identified. The code for that function should be something simple like:

def disable_admin(backend, user=None, *args, **kwargs):
    if user and user.is_admin:
        raise AuthForbidden(backend)

More docs about extending the pipeline here.

Django social auth disable for admin

1 Answers