summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJacob Kaplan-Moss <jacob@jacobian.org>2009-04-18 21:06:19 +0000
committerJacob Kaplan-Moss <jacob@jacobian.org>2009-04-18 21:06:19 +0000
commitf0e7dca9d1140731d673bafe5530862d7b041171 (patch)
tree79bfc18bb1a6ff2e238c735e5bd1c83ecc09ddf5
parent283442a50e1acdbc101096980d0d2c656890710c (diff)
[1.0.X] Fixed #10694: correctly check permissions in the change password admin. Thanks, jturnbull. Backport of r10591 from trunk.
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.0.X@10592 bcc190cf-cafb-0310-a4f2-bffc1f526a37
-rw-r--r--django/contrib/auth/admin.py2
1 files changed, 1 insertions, 1 deletions
diff --git a/django/contrib/auth/admin.py b/django/contrib/auth/admin.py
index 805ca328e1..cb447b71c6 100644
--- a/django/contrib/auth/admin.py
+++ b/django/contrib/auth/admin.py
@@ -90,7 +90,7 @@ class UserAdmin(admin.ModelAdmin):
}, context_instance=template.RequestContext(request))
def user_change_password(self, request, id):
- if not request.user.has_perm('auth.change_user'):
+ if not self.has_change_permission(request):
raise PermissionDenied
user = get_object_or_404(self.model, pk=id)
if request.method == 'POST':