[Answered ]-Django REST – Deny read access to ListAPIView

2👍

Found the answer right after posting this. Apparently there’s also a has_permission() function separate from the has_object_permission() that I used. So permissions.py becomes:

# permissions.py
class RejectAll(permissions.BasePermission):
    def has_permission(self, request, view):
        return False

This works as expected now.

Leave a comment