Commit 7590c250 authored by Łukasz Nowak's avatar Łukasz Nowak Committed by Cédric Le Ninivin

Treat user with Manager role as superuser.

parent e57edd94
...@@ -446,7 +446,8 @@ class CatalogTool (UniqueObject, ZCatalog, CMFCoreCatalogTool, ActiveObject): ...@@ -446,7 +446,8 @@ class CatalogTool (UniqueObject, ZCatalog, CMFCoreCatalogTool, ActiveObject):
""" """
user = _getAuthenticatedUser(self) user = _getAuthenticatedUser(self)
user_str = str(user) user_str = str(user)
user_is_superuser = (user == system_user) or (user_str == SUPER_USER) user_is_superuser = (user == system_user) or (user_str == SUPER_USER) or \
('Manager' in user.getRoles())
allowedRolesAndUsers = self._listAllowedRolesAndUsers(user) allowedRolesAndUsers = self._listAllowedRolesAndUsers(user)
role_column_dict = {} role_column_dict = {}
local_role_column_dict = {} local_role_column_dict = {}
...@@ -569,7 +570,8 @@ class CatalogTool (UniqueObject, ZCatalog, CMFCoreCatalogTool, ActiveObject): ...@@ -569,7 +570,8 @@ class CatalogTool (UniqueObject, ZCatalog, CMFCoreCatalogTool, ActiveObject):
""" """
user = _getAuthenticatedUser(self) user = _getAuthenticatedUser(self)
user_str = str(user) user_str = str(user)
user_is_superuser = (user == system_user) or (user_str == SUPER_USER) user_is_superuser = (user == system_user) or (user_str == SUPER_USER) or \
('Manager' in user.getRoles())
if user_is_superuser: if user_is_superuser:
# We need no security check for super user. # We need no security check for super user.
return query return query
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment