checking project and inventory "use" permission to remediate

2026-01-12 18:40:01 -03:30 · 2017-08-01 17:25:55 -07:00 · 2017-08-01 17:25:55 -07:00 · a99818f7cd
commit a99818f7cd
parent 74f5c56607
2 changed files with 39 additions and 22 deletions
--- a/awx/ui/client/src/inventories-hosts/inventories/main.js
+++ b/awx/ui/client/src/inventories-hosts/inventories/main.js
@ -123,35 +123,51 @@ angular.module('inventory', [
                                                    'status: ' + status
                                            });
                                    });
-                                }],
-                            CanRemediate: ['resourceData', '$stateParams', 'Rest', 'GetBasePath', 'ProcessErrors',
-                                function(resourceData, $stateParams, Rest, GetBasePath, ProcessErrors){
+                            }],
+                            checkProjectPermission: ['resourceData', '$stateParams', 'Rest', 'GetBasePath',
+                                function(resourceData, $stateParams, Rest, GetBasePath){
                                    if(_.has(resourceData, 'data.summary_fields.insights_credential')){
                                        let credential_id = resourceData.data.summary_fields.insights_credential.id,
-                                        path = `${GetBasePath('projects')}?credential__id=${credential_id}&role_level=use_role`;
-                                        Rest.setUrl(path);
-                                        return Rest.get()
-                                            .then(({data}) => {
-                                                if (data.results.length > 0){
-                                                    return true;
-                                                }
-                                                else {
+                                            path = `${GetBasePath('projects')}?credential__id=${credential_id}&role_level=use_role`;
+                                            Rest.setUrl(path);
+                                            return Rest.get().then(({data}) => {
+                                                    if (data.results.length > 0){
+                                                        return true;
+                                                    }
+                                                    else {
+                                                        return false;
+                                                    }
+                                                }).catch(() => {
                                                    return false;
-                                                }
-                                            })
-                                            .catch(({data, status}) => {
-                                                ProcessErrors(null, data, status, null, {
-                                                    hdr: 'Error!',
-                                                    msg: 'Failed to get instance groups. GET returned ' +
-                                                        'status: ' + status
                                                });
-                                        });
                                    }
                                    else {
                                        return false;
                                    }
-
-                                }]
+                            }],
+                            checkInventoryPermission: ['resourceData', '$stateParams', 'Rest', 'GetBasePath',
+                                function(resourceData, $stateParams, Rest, GetBasePath){
+                                    if(_.has(resourceData, 'data.summary_fields.insights_credential')){
+                                        let path = `${GetBasePath('inventory')}${$stateParams.inventory_id}/?role_level=use_role`;
+                                            Rest.setUrl(path);
+                                            return Rest.get().then(() => {
+                                              return true;
+                                            }).catch(() => {
+                                              return false;
+                                            });
+                                    }
+                                    else {
+                                        return false;
+                                    }
+                            }],
+                            CanRemediate: ['checkProjectPermission', 'checkInventoryPermission',
+                                function(checkProjectPermission, checkInventoryPermission){
+                                    // the user can remediate an insights
+                                    // inv if the user has "use" permission on
+                                    // an insights project and the inventory
+                                    // being edited:
+                                    return checkProjectPermission === true && checkInventoryPermission === true;
+                            }]
                        },

                    }
--- a/awx/ui/client/src/inventories-hosts/inventories/standard-inventory/edit/inventory-edit.controller.js
+++ b/awx/ui/client/src/inventories-hosts/inventories/standard-inventory/edit/inventory-edit.controller.js
@ -117,5 +117,6 @@ export default ['$scope', '$location',
    '$stateParams', 'InventoryForm', 'Rest',
    'ProcessErrors', 'GetBasePath', 'ParseTypeChange', 'Wait',
    'ToJSON', 'ParseVariableString',
-    '$state', 'OrgAdminLookup', '$rootScope', 'resourceData', 'CreateSelect2', 'InstanceGroupsService', 'InstanceGroupsData', InventoriesEdit,
+    '$state', 'OrgAdminLookup', '$rootScope', 'resourceData', 'CreateSelect2',
+    'InstanceGroupsService', 'InstanceGroupsData', 'CanRemediate', InventoriesEdit,
 ];