Merge pull request #4962 from chrismeyersfsu/fix-4354

ensure manually modifying hosts adhears to license
2026-05-05 16:01:50 -05:00 · 2017-01-27 15:03:25 -05:00
parent a467d20341 ef3a3b3b2f
commit 0a5b037236
4 changed files with 64 additions and 19 deletions
--- a/awx/api/permissions.py
+++ b/awx/api/permissions.py
@@ -4,9 +4,6 @@
 # Python
 import logging

-# Django
-from django.http import Http404
-
 # Django REST Framework
 from rest_framework.exceptions import MethodNotAllowed, PermissionDenied
 from rest_framework import permissions
@@ -19,7 +16,7 @@ from awx.main.utils import get_object_or_400
 logger = logging.getLogger('awx.api.permissions')

 __all__ = ['ModelAccessPermission', 'JobTemplateCallbackPermission',
-           'TaskPermission', 'ProjectUpdatePermission', 'UserPermission']
+           'TaskPermission', 'ProjectUpdatePermission', 'UserPermission',]


 class ModelAccessPermission(permissions.BasePermission):
@@ -96,13 +93,6 @@ class ModelAccessPermission(permissions.BasePermission):
        method based on the request method.
        '''

-        # Check that obj (if given) is active, otherwise raise a 404.
-        active = getattr(obj, 'active', getattr(obj, 'is_active', True))
-        if callable(active):
-            active = active()
-        if not active:
-            raise Http404()
-
        # Don't allow anonymous users. 401, not 403, hence no raised exception.
        if not request.user or request.user.is_anonymous():
            return False
@@ -216,3 +206,5 @@ class UserPermission(ModelAccessPermission):
        elif request.user.is_superuser:
            return True
        raise PermissionDenied()
+
+
--- a/awx/api/views.py
+++ b/awx/api/views.py
@@ -1685,6 +1685,7 @@ class HostList(ListCreateAPIView):

 class HostDetail(RetrieveUpdateDestroyAPIView):

+    always_allow_superuser = False
    model = Host
    serializer_class = HostSerializer