Jeff, Any chance you would be willing to post the code for your in-house ticketing system? I have need for a similar application.
Thanks and not hard feelings if you can't. On May 9, 7:25 pm, Jeff Anderson <[EMAIL PROTECTED]> wrote: > pihentagy wrote: > > Hi all! > > > I come to here from a little symfony background (a framework, which > > try to borrow good things from django), and would like to have an > > overview how django stacks up. > > > I would like to ask, if the admin module can be used on a production > > server by registered users. > > The admin module can be used by registered users, yes.> What problems can > occur? > > (I assume every object references a user) > > The admin interface was designed for admins. As long as you keep the > access limited to trusted users, very few problems (security wise)> - > editing/deleting objects not belonging to user > > Currently the admin interface doesn't handle row-level permissions. A > user can be granted to edit articles, but not restricted to only their > own. I *believe* this is a feature that will be added in newforms-admin. > > > How these problems are solved in django? > > These problems are solved by writing your own views for your models. Its > really quite easy to do. We have an in-house ticket system done in > django, and I've tinkered with "person x in group y can edit these > tickets", "group z can edit tickets that are assigned to a certain > category", etc... We simply disabled access to the admin interface for > the less-privileged users, yet they can still edit certain objects at > the row-level with our custom views. > > It almost sounds like you are asking if the admin interface can just be > your whole site. That's a bad idea. > > Good Luck! > > Jeff Anderson > > signature.asc > 1KDownload --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~----------~----~----~----~------~----~------~--~---
