Reputation: 14254
Adding permissions to django users which have add-on models
I will be creating an intranet site with multiple roles (client-employee, client-admin, staff team member). Each role will have a model that attaches (via One-to-One or ForeignKey field) to a user with custom fields. I want each role to have it's own set of permissions (like a group).
How can I store this permissions set inside my application. Groups seem to be defined as part of the contrib.admin app rather than in code. I couldn't find anything in documentation on how to define a group.
What is the best way to handle model level permissions. Maybe I could do a check in the model if see if the user has the right role-model.
Upvotes: 1
Views: 565
Answers (1)
Reputation: 188064
Access control lists are tricky (some say dead), but Django comes with a good default implementation in contrib.auth equipped with:
- Users
- Permissions: Binary (yes/no) flags designating whether a user may perform a certain task.
- Groups: A generic way of applying labels and permissions to more than one user.
A more detailed introduction can be found here:
Upvotes: 1
Related Questions
- Django per-model authorization permissions
- add permission to model
- Django Python : adding custom permissions to specific users
- Django - How to work with `auth_permission` Model
- How do I add to the default permissions of a model in Django
- Make models belong to users in django
- Create user roles and permissions extending the existing User model
- Adding Custom Permissions in django.auth.models
- How to extend Django User model to manage permissions
- Adding custom permissions to imported models