External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-01-24 16:01:20 -03:30
Code Issues Packages Projects Releases Wiki Activity

prevent a user from removing their own admin_role

Browse Source
This commit is contained in:
Wayne Witzel III 2016-04-28 15:39:56 -04:00
parent 526e04a00c
commit 1e432126cd
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
awx/api/views.py
View File

@ -1109,6 +1109,10 @@ class UserRolesList(SubListCreateAttachDetachAPIView):
if not sub_id:
data = dict(msg='Role "id" field is missing')
return Response(data, status=status.HTTP_400_BAD_REQUEST)
if sub_id == self.request.user.admin_role.pk:
raise PermissionDenied('You may not remove your own admin_role')
return super(UserRolesList, self).post(request, *args, **kwargs)
def check_parent_access(self, parent=None):