mirror of
https://github.com/encode/django-rest-framework.git
synced 2024-11-22 17:47:04 +03:00
Add initial explanatory paragraph
This commit is contained in:
parent
de6908fbef
commit
f2d6346776
|
@ -1,7 +1,11 @@
|
|||
# Tutorial 4: Authentication & Permissions
|
||||
|
||||
Currently our API doesn't have any restrictions on who can
|
||||
Currently our API doesn't have any restrictions on who can edit or delete code snippets. We'd like to have some more advanced behavior in order to make sure that:
|
||||
|
||||
* Code snippets are always associated with a creator.
|
||||
* Only authenticated users may create snippets.
|
||||
* Only the creator of a snippet may update or delete it.
|
||||
* Unauthenticated requests should have full read-only access.
|
||||
|
||||
## Adding information to our model
|
||||
|
||||
|
|
Loading…
Reference in New Issue
Block a user