summaryrefslogtreecommitdiff
path: root/docs
diff options
context:
space:
mode:
authorTim Graham <timograham@gmail.com>2014-06-24 07:09:38 -0400
committerTim Graham <timograham@gmail.com>2014-06-24 07:09:38 -0400
commit150d88cc2c0866ef65f077387e3e560e9c9c3f80 (patch)
treed0b1f8c62fcf1a4ba60db24f7a784ea0120a6251 /docs
parent460ec09d2ed26f5862aabeaa480bcb713d5f331f (diff)
Restored is_anonymous() check in ModelBackend permission checking removed in refs #17903.
Thanks Florian Apolloner for raising the issue.
Diffstat (limited to 'docs')
-rw-r--r--docs/ref/contrib/auth.txt17
1 files changed, 10 insertions, 7 deletions
diff --git a/docs/ref/contrib/auth.txt b/docs/ref/contrib/auth.txt
index 8509c0861a..a9f60e3234 100644
--- a/docs/ref/contrib/auth.txt
+++ b/docs/ref/contrib/auth.txt
@@ -446,26 +446,29 @@ The following backends are available in :mod:`django.contrib.auth.backends`:
.. versionadded:: 1.8
Returns the set of permission strings the ``user_obj`` has from their
- own user permissions. Returns an empty set if the user is not
- :meth:`active <django.contrib.auth.models.CustomUser.is_active>`.
+ own user permissions. Returns an empty set if
+ :meth:`~django.contrib.auth.models.AbstractBaseUser.is_anonymous` or
+ :attr:`~django.contrib.auth.models.CustomUser.is_active` is ``False``.
.. method:: get_group_permissions(user_obj, obj=None)
Returns the set of permission strings the ``user_obj`` has from the
- permissions of the groups they belong. Returns an empty set if the user
- is not :meth:`active <django.contrib.auth.models.CustomUser.is_active>`.
+ permissions of the groups they belong. Returns an empty set if
+ :meth:`~django.contrib.auth.models.AbstractBaseUser.is_anonymous` or
+ :attr:`~django.contrib.auth.models.CustomUser.is_active` is ``False``.
.. method:: get_all_permissions(user_obj, obj=None)
Returns the set of permission strings the ``user_obj`` has, including both
- user permissions and group permissions. Returns an empty set if the
- user is not :meth:`active <django.contrib.auth.models.CustomUser.is_active>`.
+ user permissions and group permissions. Returns an empty set if
+ :meth:`~django.contrib.auth.models.AbstractBaseUser.is_anonymous` or
+ :attr:`~django.contrib.auth.models.CustomUser.is_active` is ``False``.
.. method:: has_perm(user_obj, perm, obj=None)
Uses :meth:`get_all_permissions` to check if ``user_obj`` has the
permission string ``perm``. Returns ``False`` if the user is not
- :meth:`~django.contrib.auth.models.CustomUser.is_active`.
+ :attr:`~django.contrib.auth.models.CustomUser.is_active`.
.. method:: has_module_perms(self, user_obj, app_label)