Prevent remote sync if rbac sync is disabled (#7044)

Syncing from new rbac to old rbac locally calls the
disable_rbac_sync() context manager.

If rbac sync is disabled, we do not need to remote
sync, as we can assume the remote syncing already
occurred in the viewset.

Signed-off-by: Seth Foster <fosterbseth@gmail.com>

awx/main/models/rbac.py

@@ -679,10 +679,11 @@ def sync_members_to_new_rbac(instance, action, model, pk_set, reverse, **kwargs)
         assignment = give_or_remove_permission(role, user, giving=is_giving, rd=rd)
 
         # sync to resource server
-        if is_giving:
+        if rbac_sync_enabled.enabled:
-            maybe_reverse_sync_assignment(assignment)
+            if is_giving:
-        else:
+                maybe_reverse_sync_assignment(assignment)
-            maybe_reverse_sync_unassignment(rd, user, role.content_object)
+            else:
+                maybe_reverse_sync_unassignment(rd, user, role.content_object)
 
 
 def sync_parents_to_new_rbac(instance, action, model, pk_set, reverse, **kwargs):
@@ -729,10 +730,11 @@ def sync_parents_to_new_rbac(instance, action, model, pk_set, reverse, **kwargs)
             assignment = give_or_remove_permission(child_role, team, giving=is_giving, rd=rd)
 
             # sync to resource server
-            if is_giving:
+            if rbac_sync_enabled.enabled:
-                maybe_reverse_sync_assignment(assignment)
+                if is_giving:
-            else:
+                    maybe_reverse_sync_assignment(assignment)
-                maybe_reverse_sync_unassignment(rd, team, child_role.content_object)
+                else:
+                    maybe_reverse_sync_unassignment(rd, team, child_role.content_object)
 
 
 ROLE_DEFINITION_TO_ROLE_FIELD = {