summaryrefslogtreecommitdiff
path: root/docs
diff options
context:
space:
mode:
authorTim Graham <timograham@gmail.com>2016-05-05 12:42:19 -0400
committerTim Graham <timograham@gmail.com>2016-05-06 08:56:06 -0400
commit03efa304bce5ef0924948a74ae01cdf817dd416a (patch)
tree13e64ec5dbd127e302efcf1200b46c5bbbec1fbf /docs
parentb3acf35f13aae57eb3c8340dd5ff7e61482e2537 (diff)
Refs #25847 -- Added system check for UserModel.is_anonymous/is_authenticated methods.
Diffstat (limited to 'docs')
-rw-r--r--docs/ref/checks.txt6
1 files changed, 6 insertions, 0 deletions
diff --git a/docs/ref/checks.txt b/docs/ref/checks.txt
index 486b88cc2e..e4af02c1a2 100644
--- a/docs/ref/checks.txt
+++ b/docs/ref/checks.txt
@@ -450,6 +450,12 @@ Auth
to be at most 255 characters.
* **auth.E008**: The permission named ``<name>`` of model ``<model>`` is longer
than 255 characters.
+* **auth.C009**: ``<User model>.is_anonymous`` must be an attribute or property
+ rather than a method. Ignoring this is a security issue as anonymous users
+ will be treated as authenticated!
+* **auth.C010**: ``<User model>.is_authenticated`` must be an attribute or
+ property rather than a method. Ignoring this is a security issue as anonymous
+ users will be treated as authenticated!
Content Types