encode/django-rest-framework
1
1
Fork 0
mirror of https://github.com/encode/django-rest-framework.git synced 2025-08-05 04:50:12 +03:00
Code Issues Packages Projects Releases Wiki Activity

Merge 6268e99008 into a857dab79c

Browse Source
This commit is contained in:
Aljosa Mohorovic 2017-05-01 06:28:09 +00:00 committed by GitHub
commit faad0f74c2
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
docs/api-guide/permissions.md
View File

@ -183,6 +183,12 @@ To implement a custom permission, override `BasePermission` and implement either
The methods should return `True` if the request should be granted access, and `False` otherwise. The methods should return `True` if the request should be granted access, and `False` otherwise.
---
**Note**: If `has_permission()` doesn't return True and grants access `has_object_permission()` will never be called.
---
If you need to test if a request is a read operation or a write operation, you should check the request method against the constant `SAFE_METHODS`, which is a tuple containing `'GET'`, `'OPTIONS'` and `'HEAD'`. For example: If you need to test if a request is a read operation or a write operation, you should check the request method against the constant `SAFE_METHODS`, which is a tuple containing `'GET'`, `'OPTIONS'` and `'HEAD'`. For example:
if request.method in permissions.SAFE_METHODS: if request.method in permissions.SAFE_METHODS: