#14249: Inactive users have less permissions then anonymous users with custom backend ----------------------------+----------------------------------------------- Reporter: hvdklauw | Owner: nobody Status: new | Milestone: 1.3 Component: Authentication | Version: 1.2 Keywords: | Stage: Unreviewed Has_patch: 0 | ----------------------------+----------------------------------------------- With the closing of Ticket #12557 a custom backend could specify anonymous user permissions.
However now I have a system where an anonymous user has some permissions and a logged in inactive user (User.is_active == False) has no permissions at all. I suggest the checks for is_active and is_superuser get removed as a check from the User class itself and instead get moved to the default authentication backend. That way the default way keeps working the way it currently does, but it will allow developers to use those two properties as they see fit when they implement a custom backend. -- Ticket URL: <http://code.djangoproject.com/ticket/14249> Django <http://code.djangoproject.com/> The Web framework for perfectionists with deadlines. -- You received this message because you are subscribed to the Google Groups "Django updates" group. To post to this group, send email to django-upda...@googlegroups.com. To unsubscribe from this group, send email to django-updates+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/django-updates?hl=en.