Django admin integration for Django Hijack (

Build Status Coverage Status PyPI

Screenshot of django-hijack in action on the admin site.


Follow the instructions on to install django-hijack.

Get the latest stable release from PyPi:

pip install django-hijack-admin

In your, add hijack_admin to your installed apps:


For the admin integration to work, you must explicitly set HIJACK_ALLOW_GET_REQUESTS = True in your project settings. Please be aware that users can now be hijacked not only using POST requests, but also using GET requests, which could facilitate CSRF attacks.



Path to the template for the "Hijack" buttons. Default: 'hijack_admin/admin_button.html'


Whether the user model should be registered with HijackUserAdmin automatically. Default: True


Adds the possibility to configure the admin class name.

Custom user admins

Custom user admins are supported. Just set HIJACK_REGISTER_ADMIN = False and modify your custom admin class as shown in this example:

from hijack_admin.admin import HijackUserAdminMixin

class MyUserAdmin(UserAdmin, HijackUserAdminMixin):
    list_display = (
        'hijack_field',  # Hijack button

Models with ForeignKey to User

You can also add the hijack field to a model that is related to the User model with the HijackRelatedAdminMixin.
from django.contrib import Admin
from hijack_admin.admin import HijackRelatedAdminMixin

class MyCustomerAdmin(HijackRelatedAdminMixin, admin.ModelAdmin)
    list_display = ('user', 'hijack_field')


Anyone and everyone is welcome to contribute. Please take a moment to review the guidelines for contributing.

django-hijack-admin is free software. If you find it useful and would like to give back, please consider to make a donation using Bitcoin or PayPal. Thank you!