From 97c56d451eb847d9bfc63c9b8952c74a83eeb9c1 Mon Sep 17 00:00:00 2001
From: Chris Meyers <chris.meyers.fsu@gmail.com>
Date: Thu, 12 Nov 2015 15:33:00 -0500
Subject: [PATCH] allow multi-org expired licenses to delete orgs

---
 awx/main/access.py  | 8 ++++----
 awx/main/backend.py | 1 -
 2 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/awx/main/access.py b/awx/main/access.py
index b4a798fe21..4af42b28f2 100644
--- a/awx/main/access.py
+++ b/awx/main/access.py
@@ -146,7 +146,7 @@ class BaseAccess(object):
     def can_unattach(self, obj, sub_obj, relationship):
         return self.can_change(obj, None)
 
-    def check_license(self, add_host=False, feature=None):
+    def check_license(self, add_host=False, feature=None, check_expiration=True):
         reader = TaskSerializer()
         validation_info = reader.from_file()
         if ('test' in sys.argv or 'jenkins' in sys.argv) and not os.environ.get('SKIP_LICENSE_FIXUP_FOR_TEST', ''):
@@ -154,9 +154,9 @@ class BaseAccess(object):
             validation_info['time_remaining'] = 99999999
             validation_info['grace_period_remaining'] = 99999999
 
-        if validation_info.get('time_remaining', None) is None:
+        if check_expiration and validation_info.get('time_remaining', None) is None:
             raise PermissionDenied("license is missing")
-        if validation_info.get("grace_period_remaining") <= 0:
+        if check_expiration and validation_info.get("grace_period_remaining") <= 0:
             raise PermissionDenied("license has expired")
 
         free_instances = validation_info.get('free_instances', 0)
@@ -262,7 +262,7 @@ class OrganizationAccess(BaseAccess):
                     self.user in obj.admins.all())
 
     def can_delete(self, obj):
-        self.check_license(feature='multiple_organizations')
+        self.check_license(feature='multiple_organizations', check_expiration=False)
         return self.can_change(obj, None)
 
 class InventoryAccess(BaseAccess):
diff --git a/awx/main/backend.py b/awx/main/backend.py
index 7b6ea7719b..9920283d21 100644
--- a/awx/main/backend.py
+++ b/awx/main/backend.py
@@ -114,7 +114,6 @@ class TowerSAMLIdentityProvider(BaseSAMLIdentityProvider):
         Given the SAML attributes extracted from the SSO response, get
         the user data like name.
         """
-        import os
         attrs = dict()
         for social_attr in django_settings.SOCIAL_AUTH_SAML_ATTRS_MAP:
             map_attr = django_settings.SOCIAL_AUTH_SAML_ATTRS_MAP[social_attr]