From f81d6afe835b53bdc4f98eaefbac820ba0e3c6b8 Mon Sep 17 00:00:00 2001
From: Akita Noek <anoek@ansible.com>
Date: Thu, 11 Aug 2016 10:17:33 -0400
Subject: [PATCH] Fixed team credential list to work with corrected permissions

---
 awx/api/views.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/awx/api/views.py b/awx/api/views.py
index dfc7685aa0..ea4a1006bb 100644
--- a/awx/api/views.py
+++ b/awx/api/views.py
@@ -1392,8 +1392,8 @@ class TeamCredentialsList(SubListCreateAPIView):
         self.check_parent_access(team)
 
         visible_creds = Credential.accessible_objects(self.request.user, 'read_role')
-        team_creds = Credential.objects.filter(admin_role__parents=team.member_role)
-        return team_creds & visible_creds
+        team_creds = Credential.objects.filter(Q(use_role__parents=team.member_role) | Q(admin_role__parents=team.member_role))
+        return (team_creds & visible_creds).distinct()
 
 
 class OrganizationCredentialList(SubListCreateAPIView):