Data Level Access Control

70 views
Skip to first unread message

datta

unread,
Jan 5, 2010, 3:55:12 PM1/5/10
to Django users
Hi,

Is there a setting/module that helps me to achieve data level access
control in a web application.

For example, if I have a sales app, the leads created by one user
should not be visible to the other. Also, I should be able to create
sales hierarchies ( agents attached to managers, managers reporting to
VP;s and VP;s managing sub-organizations in a organization). If anyone
of you is familiar with 'siebel' access control module, this
functionality is implemented there.

I know that one can achieve all of this programmatically, but if there
is an app or a setting that helps me do this, that will be great. I am
not sure if Pinax is planning to provide a similar functionality in
one of its 'base' projects.

Thanks!
Datta

Daniel Hilton

unread,
Jan 5, 2010, 5:45:23 PM1/5/10
to django...@googlegroups.com
2010/1/5 datta <dattat...@gmail.com>:

> Hi,
>
> Is there a setting/module that helps me to achieve data level access
> control in a web application.

There are a number of projects that are looking at row-level access control:

http://nomadblue.com/blog/django/django-rbac/
http://opensource.washingtontimes.com/projects/objectpermissions/

You can enforce this through use of managers though, so say you had a
leads model, you could have a leadManager
that only ever got leads for the current logged in user.

HTH
Dan


>
> For example, if I have a sales app, the leads created by one user
> should not be visible to the other. Also, I should be able to create
> sales hierarchies ( agents attached to managers, managers reporting to
> VP;s and VP;s managing sub-organizations in a organization). If anyone
> of you is familiar with 'siebel' access control module, this
> functionality is implemented there.
>
> I know that one can achieve all of this programmatically, but if there
> is an app or a setting that helps me do this, that will be great. I am
> not sure if Pinax is planning to provide a similar functionality in
> one of its 'base' projects.
>
> Thanks!
> Datta
>

> --
> You received this message because you are subscribed to the Google Groups "Django users" group.
> To post to this group, send email to django...@googlegroups.com.
> To unsubscribe from this group, send email to django-users...@googlegroups.com.
> For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
>
>
>
>

--
Dan Hilton
============================
www.twitter.com/danhilton
www.DanHilton.co.uk
============================

derek

unread,
Jan 7, 2010, 3:33:00 AM1/7/10
to Django users
You can also look at the blog entry that James Bennett (on the Django
dev team) wrote on this topic

http://www.b-list.org/weblog/2008/dec/24/admin/

He says "For a free bonus Christmas present, I’ll also explain another
frequently-requested item: how to ensure that people can only see/edit
things they “own” (i.e., that they created) in the admin. "

Yang Luo

unread,
May 22, 2019, 9:26:15 AM5/22/19
to Django users
Hi datta,

Reply all
Reply to author
Forward
0 new messages