id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
25281	Permission strings don't uniquely identify permissions	Przemysław Pietrzkiewicz		"APIs related to permissions (e.g. User.has_perm()) take a 'permission string' argument of format ""<app label>.<permission codename>"" to refer to Permissions.

But each permission is uniquely defined on the model level as a tuple of (content type, permission name). As content type refers to concrete model within a concrete app, we should be using permission string of the format ""<app label>.<model name>.<permission codename>"".

This becomes a concrete issue once one wants to define custom permissions for their models, and doesn't observe the convention of putting the model name in the permission codenames (or wants to inherit the custom permissions form an abstract model).

See also https://groups.google.com/forum/#!searchin/django-developers/permissions/django-developers/ngV5KhLXUrQ/DTfqhG0LRG4J ."	Cleanup/optimization	new	contrib.auth	dev	Normal			Sage Abdullah	Accepted	1	1	0	1	0	0