Return a 403 if a view class's is_accessible returns false.

is_accessible says: Override this method to add permission checks. This means that it should return forbidden since the item exists but you are not allowed to see it

Return a 403 if a view class's is_accessible returns false.
is_accessible says: Override this method to add permission checks. This means that it should return forbidden since the item exists but you are not allowed to see it
a42fdae2 · Joshua Johnston · d2ed4477 · a42fdae2 · a42fdae2
Commit a42fdae2 authored Oct 02, 2013 by Joshua Johnston
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

README.rst README.rst +1 -1

base.py flask_admin/base.py +1 -1

No files found.
--- a/README.rst
+++ b/README.rst
@@ -35,4 +35,4 @@ If you want to localize administrative interface, install `Flask-BabelEx <https:
 Examples
 --------
-The library comes with a quite a few examples, you can find them in the `examples <https://github.com/mrjoes/flask-admin/tree/master/examples` directory.
+The library comes with a quite a few examples, you can find them in the `examples <https://github.com/mrjoes/flask-admin/tree/master/examples>` directory.
--- a/flask_admin/base.py
+++ b/flask_admin/base.py
@@ -297,7 +297,7 @@ class BaseView(with_metaclass(AdminViewMeta, BaseViewClass)):
                View function arguments
        """
        if not self.is_accessible():
-            return abort(404)
+            return abort(403)
    @property
    def _debug(self):