max
Reputation: 3716
creating admin restricted urls
so in my urls.py (outside django default admin section ) i want to restrict some urls only to admin so if i have this for logged users
from django.contrib.auth.decorators import login_required
urlpatterns = [
url(r'^a1$',login_required( views.admin_area1 ), name='a1'),
url(r'^a2$', login_required(views.admin_area2) , name='a2'),
url(r'^a3', login_required(views.admin_area3) , name='a3'),
]
is there enyway torestrict these links to logged admins not just any logged user ?
there is but according to this i can use user_passes_test but i have to use it in view
Upvotes: 2
Views: 229
Answers (1)
Alasdair
Reputation: 308849
You can use the decorator returned by user_passes_test(lambda u: u.is_superuser) in the same way that you use login_required:
urlpatterns = [
url(r'^a1$', user_passes_test(lambda u: u.is_superuser)(views.admin_area1), name='a1'),
]
If you want to restrict access to admins, then it might be more accurate to use the staff_member_required decorator (which checks the is_staff flag) instead of checking the is_superuser flag.
from django.contrib.admin.views.decorators import staff_member_required
urlpatterns = [
url(r'^a1$', staff_member_required(views.admin_area1), name='a1'),
...
]
Upvotes: 7
Related Questions
- How do I restrict access to admin pages in Django?
- How can I change the URL to the Django admin interface?
- django custom admin login page
- How to set a custom url with "admin/" properly for Django Admin?
- Django Admin urls
- How to limit urls to admin users in Django
- Django- restrict users to access urls
- Limit url acces with Django
- Block url for users not in staff. Django
- Django admin url.py