darkhelm/notifications-admin
1
0
Fork 0
mirror of https://github.com/GSA/notifications-admin.git synced 2025-12-10 23:23:27 -05:00
Code Issues Packages Projects Releases Wiki Activity

remove admin_override from all has_permissions usage

Browse Source 
as previously pointed out, it's not used anywhere.
This commit is contained in:
Leo Hemsted
2018-03-01 10:30:17 +00:00
parent 3ae815528c
commit 4a08cf81e7
27 changed files with 108 additions and 127 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
app/main/views/manage_users.py
View File

@@ -16,7 +16,7 @@ from app.utils import user_has_permissions
@main.route("/services/<service_id>/users")
@login_required
@user_has_permissions('view_activity', admin_override=True)
@user_has_permissions('view_activity')
def manage_users(service_id):
users = sorted(
user_api_client.get_users_for_service(service_id=service_id) + [
@@ -37,7 +37,7 @@ def manage_users(service_id):
@main.route("/services/<service_id>/users/invite", methods=['GET', 'POST'])
@login_required
@user_has_permissions('manage_service', admin_override=True)
@user_has_permissions('manage_service')
def invite_user(service_id):
form = InviteUserForm(
@@ -71,7 +71,7 @@ def invite_user(service_id):
@main.route("/services/<service_id>/users/<user_id>", methods=['GET', 'POST'])
@login_required
@user_has_permissions('manage_service', admin_override=True)
@user_has_permissions('manage_service')
def edit_user_permissions(service_id, user_id):
service_has_email_auth = 'email_auth' in current_service['permissions']
# TODO we should probably using the service id here in the get user
@@ -103,7 +103,7 @@ def edit_user_permissions(service_id, user_id):
@main.route("/services/<service_id>/users/<user_id>/delete", methods=['GET', 'POST'])
@login_required
@user_has_permissions('manage_service', admin_override=True)
@user_has_permissions('manage_service')
def remove_user_from_service(service_id, user_id):
user = user_api_client.get_user(user_id)
# Need to make the email address read only, or a disabled field?
@@ -139,7 +139,7 @@ def remove_user_from_service(service_id, user_id):
@main.route("/services/<service_id>/cancel-invited-user/<invited_user_id>", methods=['GET'])
@user_has_permissions('manage_service', admin_override=True)
@user_has_permissions('manage_service')
def cancel_invited_user(service_id, invited_user_id):
invite_api_client.cancel_invited_user(service_id=service_id, invited_user_id=invited_user_id)