That looks pretty good. If you want to avoid running all your models, you
can put that logic early in your models (obviously somewhere after auth is
defined):
if request.controller == 'secret_stuff' and not auth.has_membership('admin'
):
Anthony
On Wednesday, July 25, 2012 9:14:31 PM UTC-4, Richard Penman wrote:
>
> I mean is there a better way than something like:
>
> if not auth.has_membership('admin'):
> session.flash = 'You are not part of the admin group'
> redirect(URL(r=request, c='default', f='index'))
>
--
