External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-02-02 01:58:09 -03:30
Code Issues Packages Projects Releases Wiki Activity

Make job queryset only require JT read access to see

Browse Source 
As opposed to credential access, since users can see and potentially run
JT's without credential access now.
This commit is contained in:
Akita Noek
2016-05-12 11:33:10 -04:00
parent fb97438573
commit 6c0c789612
1 changed files with 0 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
awx/main/access.py
View File

@@ -838,9 +838,7 @@ class JobAccess(BaseAccess):
if self.user.is_superuser:
return qs.all()
credential_ids = self.user.get_queryset(Credential)
return qs.filter(
credential_id__in=credential_ids,
job_template__in=JobTemplate.accessible_objects(self.user, 'read_role')
)