id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
29699	Remove redirect loop warning re. using redirect_authenticated_user with permissions checking.	brickl	nobody	"As per [https://docs.djangoproject.com/en/2.1/topics/auth/default/#redirecting-unauthorized-requests-in-class-based-views/ redirecting-unauthorized-requests-in-class-based-views]:

**Changed in Django 2.1:**
In older versions, authenticated users who lacked permissions were redirected to the login page (which resulted in a loop) instead of receiving an HTTP 403 Forbidden response.

However, there is still a warning under [https://docs.djangoproject.com/en/2.1/topics/auth/default/#all-authentication-views/ all-authentication-views] that states that ""Enabling redirect_authenticated_user can also result in a redirect loop when using the permission_required() decorator unless the raise_exception parameter is used.""  This warning no longer seems to be relevant given the change described above, and should be deleted.

"	Cleanup/optimization	closed	Documentation	2.1	Normal	invalid	permission redirect loop authenticate		Unreviewed	1	0	0	0	1	0