Merge pull request #3238 from jangsutsr/3088_make_admin_visible_to_oprhaned_users

Make system admin and system auditor visible to oprhaned users.
2026-05-10 10:57:35 -02:30 · 2016-09-29 09:42:05 -04:00
parent bcc9d3a3ac 89cbceeab8
commit cf39f28d62
3 changed files with 24 additions and 2 deletions
--- a/awx/main/models/rbac.py
+++ b/awx/main/models/rbac.py
@@ -381,7 +381,7 @@ class Role(models.Model):
            'ancestors_table': Role.ancestors.through._meta.db_table,
            'parents_table': Role.parents.through._meta.db_table,
            'roles_table': Role._meta.db_table,
-            'ids': ','.join(str(x) for x in user.roles.values_list('id', flat=True))
+            'ids': ','.join(str(x) for x in user.roles.values_list('id', flat=True)),
        }

        qs = Role.objects.extra(
--- a/awx/main/tests/functional/api/test_role.py
+++ b/awx/main/tests/functional/api/test_role.py
@@ -0,0 +1,13 @@
+import pytest
+
+from django.core.urlresolvers import reverse
+
+@pytest.mark.django_db
+def test_admin_visible_to_orphaned_users(get, alice):
+    names = set()
+
+    response = get(reverse('api:role_list'), user=alice)
+    for item in response.data['results']:
+        names.add(item['name'])
+    assert 'System Auditor' in names
+    assert 'System Administrator' in names