archive/pillar
0
0
Fork 0
Code Issues 42 Pull Requests Projects Releases Wiki Activity

Orgs: pillar admins can always edit an organization

Browse Source
This commit is contained in:
Sybren A. Stüvel 2017-08-23 15:38:27 +02:00
parent c6eebc4eae
commit 64eab850c5
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
pillar/api/organizations/patch.py
View File

@ -88,6 +88,10 @@ class OrganizationPatchHandler(patch_handler.AbstractPatchHandler):
def _assert_is_admin(self, org_id): def _assert_is_admin(self, org_id):
om = current_app.org_manager om = current_app.org_manager
if current_user().has_cap('admin'):
# Always allow admins to edit every organization.
return
if not om.user_is_admin(org_id): if not om.user_is_admin(org_id):
log.warning('User %s uses PATCH to edit organization %s, ' log.warning('User %s uses PATCH to edit organization %s, '
'but is not admin of that Organization. Request denied.', 'but is not admin of that Organization. Request denied.',