From 809fcac7387b05624dfdad35fc51c95ecaf5d3f9 Mon Sep 17 00:00:00 2001
From: AlanCoding <arominge@redhat.com>
Date: Tue, 9 Apr 2019 09:54:44 -0400
Subject: [PATCH] fix 403 bug using write PAT and
 view.always_allow_superuser=True

---
 awx/api/permissions.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/awx/api/permissions.py b/awx/api/permissions.py
index 64cfcec5a8..df6c88618f 100644
--- a/awx/api/permissions.py
+++ b/awx/api/permissions.py
@@ -103,8 +103,7 @@ class ModelAccessPermission(permissions.BasePermission):
             return False
 
         # Always allow superusers
-        if getattr(view, 'always_allow_superuser', True) and request.user.is_superuser \
-                and not hasattr(request.user, 'oauth_scopes'):
+        if getattr(view, 'always_allow_superuser', True) and request.user.is_superuser:
             return True
 
         # Check if view supports the request method before checking permission