Django Guardian | Object Level Permissions | Admin Site | Introduction | Part 2

As useal so well explained and extremely helpful! Thank you for these amazing lessons!

jonrowland

You're amazing man, thank you for such a great content you make!

jcobsky

In the previous tutorial we could also apply object level authorization:

def has_change_permission(self, request, obj=None):
# user can change those movies which are released today
if obj:
return obj.release_date == date.today() # will return True if obj.release date is today
return False

what's the use of Guardian object level ?

gfhfrib

You have previously created REST Framework permissions and a few other permissions tutorials that were really helpful to begin with.

(1) Are these object-level permissions complementary to those other types of permissions?
(2) Are object-level permissions even required if we have view-level permissions?

matrixtoogood

This is was extremely helpful at getting me started with Django Guardian.

However, how do we hide the object permissions button on the details page for the staff user? I find that the staff user is able to access the objection permissions page and change their own permissions for the given object which feels a bit silly

mma

My question doesn´t fit into this video but I recently started with your ecommerce tutorial series. Could you make an additional video on how to upload multiple images per product from a form like amazon for example does. I checked stackoverflow and YT for that but so far there is no real video for that. Thank you so much for educating us.

phil_

shall i go for django or fastapi for inventory management system

tluangadeveloper

Please make a project on multi tenant schema package in django

twins_coder

Can you integrate to a frontend app, and restrict views?

KrishnaManohar

After all these efforts, staff user can modify permission for himself.

ebrahimfawzy