diff options
| author | Tim Graham <timograham@gmail.com> | 2014-06-24 07:09:38 -0400 |
|---|---|---|
| committer | Tim Graham <timograham@gmail.com> | 2014-06-24 07:09:38 -0400 |
| commit | 150d88cc2c0866ef65f077387e3e560e9c9c3f80 (patch) | |
| tree | d0b1f8c62fcf1a4ba60db24f7a784ea0120a6251 /docs/ref | |
| parent | 460ec09d2ed26f5862aabeaa480bcb713d5f331f (diff) | |
Restored is_anonymous() check in ModelBackend permission checking removed in refs #17903.
Thanks Florian Apolloner for raising the issue.
Diffstat (limited to 'docs/ref')
| -rw-r--r-- | docs/ref/contrib/auth.txt | 17 |
1 files changed, 10 insertions, 7 deletions
diff --git a/docs/ref/contrib/auth.txt b/docs/ref/contrib/auth.txt index 8509c0861a..a9f60e3234 100644 --- a/docs/ref/contrib/auth.txt +++ b/docs/ref/contrib/auth.txt @@ -446,26 +446,29 @@ The following backends are available in :mod:`django.contrib.auth.backends`: .. versionadded:: 1.8 Returns the set of permission strings the ``user_obj`` has from their - own user permissions. Returns an empty set if the user is not - :meth:`active <django.contrib.auth.models.CustomUser.is_active>`. + own user permissions. Returns an empty set if + :meth:`~django.contrib.auth.models.AbstractBaseUser.is_anonymous` or + :attr:`~django.contrib.auth.models.CustomUser.is_active` is ``False``. .. method:: get_group_permissions(user_obj, obj=None) Returns the set of permission strings the ``user_obj`` has from the - permissions of the groups they belong. Returns an empty set if the user - is not :meth:`active <django.contrib.auth.models.CustomUser.is_active>`. + permissions of the groups they belong. Returns an empty set if + :meth:`~django.contrib.auth.models.AbstractBaseUser.is_anonymous` or + :attr:`~django.contrib.auth.models.CustomUser.is_active` is ``False``. .. method:: get_all_permissions(user_obj, obj=None) Returns the set of permission strings the ``user_obj`` has, including both - user permissions and group permissions. Returns an empty set if the - user is not :meth:`active <django.contrib.auth.models.CustomUser.is_active>`. + user permissions and group permissions. Returns an empty set if + :meth:`~django.contrib.auth.models.AbstractBaseUser.is_anonymous` or + :attr:`~django.contrib.auth.models.CustomUser.is_active` is ``False``. .. method:: has_perm(user_obj, perm, obj=None) Uses :meth:`get_all_permissions` to check if ``user_obj`` has the permission string ``perm``. Returns ``False`` if the user is not - :meth:`~django.contrib.auth.models.CustomUser.is_active`. + :attr:`~django.contrib.auth.models.CustomUser.is_active`. .. method:: has_module_perms(self, user_obj, app_label) |
