I agree that this is currently possible in Django, I'm already using
some of what you proposed:
- I've customized add, change and delete permissions of ModelAdmin
to allow a user to manipulate only its own posts;
- I've customized the queryset method to show only the allowed posts
of a user.
On Thu, Aug 6, 2009 at 2:26 PM, Enrico wrote:
>
> Hello Michael!
>
> Thanks for replying.
>
> The point is that I want to give the user access to some objects, not
> all.
> For example, a user can edit his own blog posts, but he can't edit all
> the blog posts.
> It's almost like row-level permis
Hello Michael!
Thanks for replying.
The point is that I want to give the user access to some objects, not
all.
For example, a user can edit his own blog posts, but he can't edit all
the blog posts.
It's almost like row-level permissions.
For this to be consistent, I can't give him "blog.change_
On Thu, Aug 6, 2009 at 1:51 PM, Enrico wrote:
>
> I came across the situation described on the ticket #8146 [1], I've
> changed the permissions for a model allowing the user to access only
> certain instances of a model.
>
> As I don't want to give the user access to all objects, I've extended
>
I came across the situation described on the ticket #8146 [1], I've
changed the permissions for a model allowing the user to access only
certain instances of a model.
As I don't want to give the user access to all objects, I've extended
the `AdminSite`, changing the `index` view to ignore
`user.h
