Permalink
Browse files

Fixed #10694: correctly check permissions in the change password admi…

…n. Thanks, jturnbull.

git-svn-id: http://code.djangoproject.com/svn/django/trunk@10591 bcc190cf-cafb-0310-a4f2-bffc1f526a37
  • Loading branch information...
jacobian committed Apr 18, 2009
1 parent ccc8e10 commit ab562bf954ca0514765b1f135b63e28e5f8f4434
Showing with 1 addition and 1 deletion.
  1. +1 −1 django/contrib/auth/admin.py
@@ -96,7 +96,7 @@ def add_view(self, request):
}, context_instance=template.RequestContext(request))
def user_change_password(self, request, id):
- if not request.user.has_perm('auth.change_user'):
+ if not self.has_change_permission(request):
raise PermissionDenied
user = get_object_or_404(self.model, pk=id)
if request.method == 'POST':

0 comments on commit ab562bf

Please sign in to comment.