What I do: 1) Control user rights in views, always, no matter what. 2) Pass user perms to template so that you only display accessible, permitted links.
Cheers, AT On Wed, Mar 7, 2012 at 2:10 PM, Xavier Pegenaute <xpegena...@telepolis.es>wrote: > Hi, > > Which one is the best option? > > a- Control the user rights in the views > b- Control the user rights in the templates > c- Control the user rights in both locations > > I guess is (c), but it's too much work. > > Thanks, > Regards. > > -- > You received this message because you are subscribed to the Google Groups > "Django users" group. > To post to this group, send email to django-users@googlegroups.com. > To unsubscribe from this group, send email to django-users+unsubscribe@** > googlegroups.com <django-users%2bunsubscr...@googlegroups.com>. > For more options, visit this group at http://groups.google.com/** > group/django-users?hl=en<http://groups.google.com/group/django-users?hl=en> > . > > -- You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com. To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
