is_staffset on his or her account and know the path to administration backend to administrate site, which is good approach for situations when staff accounts are used exclusively for administration and not day to day usage.
MISAGO_ADMIN_SESSION_EXPIRATIONsetting, it will assume that administrator has been inactive and request another reauthentication upon next request to admin backend.
misago.admin.middleware.AdminAuthMiddlewaremiddleware. Middleware uses methods from
authto detect if request is pointed at protected namespace, and if it is, it uses facilities to handle and control state of administrators session.
misago.admin.testutils.admin_loginfunction for this purpose.
misago.admin.testutils.admin_login(client, username, password)
misago:admin:indexlink that should result with admin login form for unauthenticated users.