archive/pillar
0
0
Fork 0
Code Issues 42 Pull Requests Projects Releases Wiki Activity

Allow project membership to be managed by ppl with admin role.

Browse Source 
This was already mentioned as possible in the frontend, but not implemented
in the backend.
This commit is contained in:
Sybren A. Stüvel 2016-10-05 14:36:07 +02:00
parent 4e0db78ff1
commit c71186f318
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
pillar/api/projects/routes.py
View File

@ -65,9 +65,10 @@ def project_manage_users():
project = projects_collection.find_one({'_id': project_id}) project = projects_collection.find_one({'_id': project_id})
# Check if the current_user is owner of the project, or removing themselves. # Check if the current_user is owner of the project, or removing themselves.
remove_self = target_user_id == current_user_id and action == 'remove' if not authorization.user_has_role(u'admin'):
if project['user'] != current_user_id and not remove_self: remove_self = target_user_id == current_user_id and action == 'remove'
utils.abort_with_error(403) if project['user'] != current_user_id and not remove_self:
utils.abort_with_error(403)
admin_group = utils.get_admin_group(project) admin_group = utils.get_admin_group(project)