search

erdem / django-admino

Admino is a django package that provides a REST API for admin endpoints.
MIT License
205 stars 25 forks source link

The readme is a bit sparse #6

Closed andybak closed 7 years ago

andybak commented 7 years ago

I immediately wondered the following:

  1. Does it respect all permissions correctly?
  2. I'm assuming form level validation isn't applied. How about model validation? (Is it worth printing a big warning about form validation? A naive usage of this could bypass a lot of app-level security)
  3. Are inlines introspected in any way? What other ModelAdmin attributes have an effect on the API?
erdem commented 7 years ago

Hi @andybak

First of all, the project is still in alpha version so because of that there are many parts need to develop.

1) Permissions are working only create endpoints at the moment.

2) REST API using admin ModelForm validation, API view serialise the JSON data for the Django model form.

3) REST API does not support admin inlines yet.

Thanks