is_staff
set on his or her account and know the path to administration backend to administrate site, which is good approach for situations when staff accounts are used exclusively for administration and not day to day usage.MISAGO_ADMIN_SESSION_EXPIRATION
setting, it will assume that administrator has been inactive and request another reauthentication upon next request to admin backend.misago.admin.auth
module and misago.admin.middleware.AdminAuthMiddleware
middleware. Middleware uses methods from auth
to detect if request is pointed at protected namespace, and if it is, it uses facilities to handle and control state of administrators session.misago.admin.auth.is_admin_session(request)
misago.admin.auth.start_admin_session(request, user)
misago.admin.auth.update_admin_session(request)
misago.admin.auth.close_admin_session(request)
misago.admin.testutils.admin_login
function for this purpose.misago.admin.testutils.admin_login(client, username, password)
misago:admin:index
link that should result with admin login form for unauthenticated users.