Merge pull request #2416 from AlanCoding/2409_inv_update_permission

Require admin role to edit inventory
2026-01-17 04:31:21 -03:30 · 2016-06-16 13:02:45 -04:00 · 2016-06-16 13:02:45 -04:00 · c15b5f54f8
commit c15b5f54f8
parent de4f053212 81c3ae4470
1 changed files with 1 additions and 9 deletions
--- a/awx/main/access.py
+++ b/awx/main/access.py
@ -354,15 +354,7 @@ class InventoryAccess(BaseAccess):

    @check_superuser
    def can_change(self, obj, data):
-        # Verify that the user has access to the new organization if moving an
-        # inventory to a new organization.
-        org_pk = get_pk_from_dict(data, 'organization')
-        if obj and org_pk and obj.organization.pk != org_pk:
-            org = get_object_or_400(Organization, pk=org_pk)
-            if self.user not in org.admin_role:
-                return False
-        # Otherwise, just check for write permission.
-        return self.user in obj.update_role
+        return self.can_admin(obj, data)

    @check_superuser
    def can_admin(self, obj, data):