Hello! Ordinary staff users on the main django admin module are just standard django users that can access the admin site.
Setting the has_add_permission, has_change_permission and has_delete_permission via the ModelAdmin should be done to customize the permissions for specific object instances (as stated on the documentation https://docs.djangoproject.com/en/1.11/topics/auth/default/#topic-authorization ) The propper way to set the default permissions for a ordinary staff user should be either by assigning user/group permissions via - the superuser user on the admin site - via command line using the myuser.user_permissions.set([permission_list]) or myuser.user_permissions.add() or .remove() or using myuser.groups.set([group_list]) and myuser.groups.add(group1, group2) / .remove(group1, group2). - programatically on specific staff user creation, using the same methods as the above Either option should give the staff user the propper permissions to a specific model. The default permissions for a specific model always are named, for a app with app_label foo, as follows: foo.add_bar, foo.change_bar and foo.delete_bar where bar is the lowercase name for the specific model. I encourage you to read on the Official Django Documentation for the topic of authorization as it provides these and other insights. Hope it helps! On Friday, May 18, 2018 at 4:36:07 AM UTC-3, Vitaly Trifanov wrote: > > I have simple project on Django 1.11.13, that uses ordinary Django's admin > module. Staff user can not delete object while is permitted > (has_delete_permission returns always true). > > models.py: > > > class MyModel(models.Model): > name = models.IntegerField("Value", blank=True, null=True) > > admin.py: > > > @admin.register(MyModel)class MyModelAdmin(admin.ModelAdmin): > def has_add_permission(self, request): > return True > > def has_change_permission(self, request, obj=None): > return True > > def has_delete_permission(self, request, obj=None): > return True > > > I created user and logged in. He can create MyModel object (as expected), > can edit (as expected), but can not delete!! > > That's what I see if I try to delete it: > > Deleting the selected my model would result in deleting related objects, > but your account doesn't have permission to delete the following types of > objects: > > my model > > What am I doing wrong? How should I give permissions to delete MyModels to > ordinary staff user? > -- You received this message because you are subscribed to the Google Groups "Django users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/django-users. To view this discussion on the web visit https://groups.google.com/d/msgid/django-users/35bafb48-34c8-418a-9f70-10dbb6f54868%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
