Permissions Django rest框架权限_Permissions_Django Rest Framework

Permissions Django rest框架权限

permissions django-rest-framework

Permissions Django rest框架权限,permissions,django-rest-framework,Permissions,Django Rest Framework,我有以下api：在models.py中： class TMyusers(models.Model): id = models.OneToOneField('auth.User', primary_key=True) device= models.CharField(max_length=45, blank=True) class Meta: db_table = 't_myusers' ordering = ('id',) 在seria

我有以下api：

在models.py中：

class TMyusers(models.Model):
    id = models.OneToOneField('auth.User', primary_key=True)
    device= models.CharField(max_length=45, blank=True)
    class Meta:
        db_table = 't_myusers'
        ordering = ('id',)

在serializers.py中：

class UserSerializer(serializers.ModelSerializer):
    class Meta:
        model = User
        fields = ('id', 'username', 'first_name', 'last_name', 'email')

class TMyusersSerializer(serializers.ModelSerializer):
    username = serializers.CharField(source='id.username',read_only=True)
    class Meta:
        model = TMyusers
        fields = ('id', 'username', 'device')

在view.py中：

class MyUsersList(generics.ListCreateAPIView):
    queryset = TMyusers.objects.all()
    serializer_class = TMyusersSerializer
    permission_classes = (permissions.IsAuthenticated,)

我想要的是，只有autentificated用户才能读取他们的数据，但现在如果我是autentificated，我将检索所有用户的数据列表。我不知道怎样才能实现。提前谢谢。

嗯，我修好了

我对当前用户进行了筛选

class MyUsersList(generics.ListCreateAPIView):
    serializer_class = TUsuariosSerializer
    permission_classes = (permissions.IsAuthenticated,)
    def get_queryset(self):
        user = self.request.user
        return TMyusers.objects.filter(id=user)