Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

What SHOULDN'T Django's admin interface be used for?

I've been applying Django's automatic administration capabilities to some applications who had previously been very difficult to administer. I'm thinking of a lot of ways to apply it to other applications we use (including using it to replace some internal apps altogether). Before I go overboard though, is there anything in particular I shouldn't use it for?

like image 380
Jason Baker Avatar asked Dec 17 '22 09:12

Jason Baker


2 Answers

User-specific privileges. I myself had been trying to work it into that-- some of the new (and at least at the time, undocumented) features (from newforms-admin) make it actually possible. Depending on how fine you want the control to be, though, you can end up getting very, very deep into the Django/admin internals. Just because you can doesn't mean you should-- it's easier and less fragile to do so with a custom admin app.

like image 119
Devin Jeanpierre Avatar answered Dec 27 '22 02:12

Devin Jeanpierre


Generally, you shouldn't use the admin for access by people you don't really trust. Even though there's plenty of flexibility in terms of locking things down and controlling access (much more so since Django 1.0), the admin is still designed on the assumption that the people using it are trusted members of your staff.

like image 31
James Bennett Avatar answered Dec 27 '22 04:12

James Bennett