id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
9683	Authentication backends documentation doesn't mention that backends are stored in Sessions.	kyle.fox@…	Jacob	"The [http://docs.djangoproject.com/en/dev/topics/auth/#authentication-backends Authentication Backends] docs don't mention that when a User is successfully authenticated, the path to the backend that authenticated them is stored in a Session variable.

Problems can occur when you change settings.py from one custom backend to another backend.  Django attempts to import the backend specified by the path in the session, so when a request comes from a User who has already authenticated through the previous backend an exception is raised.

A simple fix for this is {{{Session.objects.all().delete()}}}.  However it should be noted that even after updating the {{{AUTHENTICATION_BACKENDS}}} setting, your application may still contain references to the old setting."		closed	Documentation	1.0		fixed			Accepted	0	0	0	0	0	0