External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-03-18 09:27:31 -02:30
Code Issues Packages Projects Releases Wiki Activity

[RBAC] Fix migration for created and modified field changes (#14999)

Browse Source 
Fix migration for created and modified field changes
This commit is contained in:
Alan Rominger
2024-03-14 15:43:14 -04:00
parent 7446da1c2f
commit 41c6337fc1
1 changed files with 2 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
awx/main/migrations/_dab_rbac.py
View File

@@ -3,7 +3,6 @@ import logging
from django.apps import apps as global_apps from django.apps import apps as global_apps
from django.db.models import ForeignKey from django.db.models import ForeignKey
from django.utils.timezone import now
from ansible_base.rbac.migrations._utils import give_permissions from ansible_base.rbac.migrations._utils import give_permissions
from ansible_base.rbac.management import create_dab_permissions from ansible_base.rbac.management import create_dab_permissions
@@ -147,7 +146,6 @@ def migrate_to_new_rbac(apps, schema_editor):
RoleDefinition = apps.get_model('dab_rbac', 'RoleDefinition') RoleDefinition = apps.get_model('dab_rbac', 'RoleDefinition')
RoleUserAssignment = apps.get_model('dab_rbac', 'RoleUserAssignment') RoleUserAssignment = apps.get_model('dab_rbac', 'RoleUserAssignment')
Permission = apps.get_model('dab_rbac', 'DABPermission') Permission = apps.get_model('dab_rbac', 'DABPermission')
migration_time = now()
# remove add premissions that are not valid for migrations from old versions # remove add premissions that are not valid for migrations from old versions
for perm_str in ('add_organization', 'add_jobtemplate'): for perm_str in ('add_organization', 'add_jobtemplate'):
@@ -209,7 +207,7 @@ def migrate_to_new_rbac(apps, schema_editor):
role_definition, created = RoleDefinition.objects.get_or_create( role_definition, created = RoleDefinition.objects.get_or_create(
name=role_definition_name, name=role_definition_name,
defaults={'description': description, 'content_type_id': role.content_type_id, 'created_on': migration_time, 'modified_on': migration_time}, defaults={'description': description, 'content_type_id': role.content_type_id},
) )
if created: if created:
@@ -229,12 +227,7 @@ def migrate_to_new_rbac(apps, schema_editor):
# Create new replacement system auditor role # Create new replacement system auditor role
new_system_auditor, created = RoleDefinition.objects.get_or_create( new_system_auditor, created = RoleDefinition.objects.get_or_create(
name='System Auditor', name='System Auditor',
defaults={ defaults={'description': 'Migrated singleton role giving read permission to everything', 'managed': True},
'description': 'Migrated singleton role giving read permission to everything',
'managed': True,
'created_on': migration_time,
'modified_on': migration_time,
},
) )
new_system_auditor.permissions.add(*list(Permission.objects.filter(codename__startswith='view'))) new_system_auditor.permissions.add(*list(Permission.objects.filter(codename__startswith='view')))