From 2a446d206e6e11c6d91c63f23adfac0f25542364 Mon Sep 17 00:00:00 2001
From: Akita Noek <anoek@ansible.com>
Date: Thu, 24 Mar 2016 13:05:16 -0400
Subject: [PATCH] Fix for RoleAccess queryset

---
 awx/main/access.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/awx/main/access.py b/awx/main/access.py
index cf4841902a..a0d34d2607 100644
--- a/awx/main/access.py
+++ b/awx/main/access.py
@@ -1340,7 +1340,7 @@ class RoleAccess(BaseAccess):
     def get_queryset(self):
         if self.user.is_superuser:
             return self.model.objects.all()
-        return self.model.accessible_objects(self.user, {'read':True})
+        return Role.objects.filter(ancestors__in=self.user.roles.all())
 
     def can_change(self, obj, data):
         return self.user.is_superuser