Fixed #29663 -- Made admin change view redirect to changelist with view permission.

2025-10-24 06:06:09 +00:00 · 2018-08-12 07:51:23 -07:00
parent 57f16655cd
commit 09ee3b6fe3
5 changed files with 29 additions and 1 deletions
--- a/tests/admin_views/tests.py
+++ b/tests/admin_views/tests.py
@@ -1865,6 +1865,21 @@ class AdminViewPermissionsTest(TestCase):
        self.assertEqual(response.context['title'], 'View article')
        self.assertContains(response, '<a href="/test_admin/admin9/admin_views/article/" class="closelink">Close</a>')

+    def test_change_view_post_without_object_change_permission(self):
+        """A POST redirectS to changelist without modifications."""
+        change_dict = {
+            'title': 'Ikke fordømt',
+            'content': '<p>edited article</p>',
+            'date_0': '2008-03-18', 'date_1': '10:54:39',
+            'section': self.s1.pk,
+        }
+        change_url = reverse('admin10:admin_views_article_change', args=(self.a1.pk,))
+        changelist_url = reverse('admin10:admin_views_article_changelist')
+        self.client.force_login(self.viewuser)
+        response = self.client.post(change_url, change_dict)
+        self.assertRedirects(response, changelist_url)
+        self.assertEqual(Article.objects.get(pk=self.a1.pk).content, '<p>Middle content</p>')
+
    def test_change_view_save_as_new(self):
        """
        'Save as new' should raise PermissionDenied for users without the 'add'