Fixed #28384 -- Fixed ModelAdmin.lookup_allowed() for OneToOneField primary keys and nested relations.

[sarahboyce]

Ticket: https://code.djangoproject.com/ticket/28384

Notes:

I am not 100% sure whether there is something I am missing from this comment

            # It is allowed to filter on values that would be found from local
            # model anyways. For example, if you filter on employee__department__id,
            # then the id value would be found already from employee__department_id.

I tried to include stuff around it in the test case but I don't really understand what it is getting at

The test itself is copied from the ticket, there is a test above test_lookup_allowed_onetoone that is very similar and can be tweaked to include this case but not sure if we want this to be in a separate test

[timgraham]

I believe the case the comment refers to is when "restaurant__place__name" is disallowed (assuming place has a name field), "restaurant__place__id" should be allowed (even when other fields on place are disllowed) since "restaurant__place_id" is allowed.

[sarahboyce]

Thank you Tim that helps! ⭐

What I have is breaking a couple of things because I am now too strict with which filters I allow

• ticket 15032 around model inheritance filtering
• ticket 17972 around to_field filtering

(this is why I have these very random additions to some list_filter definitions)

Updating that this patch needs improvement, but if anyone has any clever ideas, that would be very helpful 👍

[sarahboyce]

Ok I have something that is good enough 👍 it's ready for a review

[felixxm]

@sarahboyce Thanks 👍

[felixxm]

buildbot, test on selenium.