When you create a profile table that has a field of OneToOne, referencing the user table, and the profile form is rendered in the templates, the field OneToOne would be a select html tag that has all the user objects in the sqlite database as options for the current user creating the form to choose. The current user filling the profile form may be signed up as @azonto but chooses a different user object say @stick as @stick may sign up but yet to create his profile. How do you ensure that the current user does not have access to all the users in situations like this?
-- You received this message because you are subscribed to the Google Groups "Django users" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/django-users/6d1a5a80-2322-4559-902d-2edaa55082bbn%40googlegroups.com.