4👍
The correct way to do this is to use has_perm on the User class. If this is not working, check to make sure that both users are set as active. If that does not seem to be the problem, bring up each user in the shell and call get_group_permissions to see what permissions they actually have through their group memberships.
1👍
The has_perm method of the AbstractUser (if your User model inherits from it) actually checks, for every auth backend you set up, the inner has_perm function, the code is below:
def _user_has_perm(user, perm, obj):
"""
A backend can raise `PermissionDenied` to short-circuit permission checking.
"""
for backend in auth.get_backends():
if not hasattr(backend, 'has_perm'):
continue
try:
if backend.has_perm(user, perm, obj):
return True
except PermissionDenied:
return False
return False
So the first thing to check if wheter you have an authorization backend that actually checks the group permissions, you can either create a custom one or use the default ModelBackend,you can specify this in your settings through the following key:
AUTHENTICATION_BACKENDS = [
'django.contrib.auth.backends.ModelBackend',
]
After that, be sure to pass the permission as a string formatted in the same format used by the backend, in this case the ModelBackend formats it like this f"{perm..content_type.app_label}.{perm.codename}
A working example for your case would be:
user.has_perm("app_name.can_show_distribute_page")
- [Django]-Django: Casting Abstract Models
- [Django]-Dynamic FormWizard
- [Django]-How to fix "TemplateDoesNotExist at /admin/login/django/forms/widgets/text.html" error in Django??'