diff --git a/app/main/views/api_keys.py b/app/main/views/api_keys.py index adbe94f4c..a4e3a2f17 100644 --- a/app/main/views/api_keys.py +++ b/app/main/views/api_keys.py @@ -9,7 +9,7 @@ from app.notify_client.api_key_api_client import KEY_TYPE_NORMAL, KEY_TYPE_TEST, @main.route("/services//api") @login_required -@user_has_permissions('manage_api_keys') +@user_has_permissions('manage_api_keys', admin_override=True) def api_integration(service_id): return render_template( 'views/api/index.html', @@ -23,7 +23,7 @@ def api_integration(service_id): @main.route("/services//api/documentation") @login_required -@user_has_permissions('manage_api_keys') +@user_has_permissions('manage_api_keys', admin_override=True) def api_documentation(service_id): return render_template( 'views/api/documentation.html' @@ -32,7 +32,7 @@ def api_documentation(service_id): @main.route("/services//api/whitelist", methods=['GET', 'POST']) @login_required -@user_has_permissions('manage_api_keys') +@user_has_permissions('manage_api_keys', admin_override=True) def whitelist(service_id): form = Whitelist() if form.validate_on_submit(): @@ -51,7 +51,7 @@ def whitelist(service_id): @main.route("/services//api/keys") @login_required -@user_has_permissions('manage_api_keys') +@user_has_permissions('manage_api_keys', admin_override=True) def api_keys(service_id): return render_template( 'views/api/keys.html', @@ -90,7 +90,7 @@ def create_api_key(service_id): @main.route("/services//api/keys/revoke/", methods=['GET', 'POST']) @login_required -@user_has_permissions('manage_api_keys') +@user_has_permissions('manage_api_keys', admin_override=True) def revoke_api_key(service_id, key_id): key_name = api_key_api_client.get_api_keys(service_id=service_id, key_id=key_id)['apiKeys'][0]['name'] if request.method == 'GET': diff --git a/app/templates/main_nav.html b/app/templates/main_nav.html index 9d854eb50..5d51023ce 100644 --- a/app/templates/main_nav.html +++ b/app/templates/main_nav.html @@ -57,7 +57,7 @@ {% elif current_user.has_permissions(['view_activity']) %}
  • Team members
  • {% endif %} - {% if current_user.has_permissions(['manage_api_keys']) %} + {% if current_user.has_permissions(['manage_api_keys'], admin_override=True) %}
  • API integration
  • {% endif %}