Tag: permission
-
Django Model-Owner
The option to make a model owned by a user is actually documented for the Django Admin app. However, for reference, here are the steps: First, the model you want to have an owner needs to reference “User” as a foreign key: (in models.py) class Website(models.Model): submitted_by = models.ForeignKey(User, on_delete=models.CASCADE) url = models.URLField() Provided you…
-
MongoDB with no protection
Students at the “Universität des Saarlandes” found almost 40k MongoDB instances, apparently with no security at all. Access to these databases includes write credentials. Universität des Saarlandes: Aktuelles aus Studium und Forschung.