Krzysztof Klimonda cf86da266a Add a very simplistic Pin access control for the API ...

As pointed in issue #75 we should get away with just checking if the pin
submitter is the currently logged in user. Assuming that we can implement
authorization for updating and deleting pins rather easily by subclassing
DjangoAuthorization so it passes the object to the Authorization backend.

2013-03-02 17:00:58 -08:00

7.2 KiB

Raw Blame History

View Raw