klmp200/Sith
1
0
Fork 0
mirror of https://github.com/ae-utbm/sith.git synced 2025-04-01 17:30:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fixed api permissions

Browse Source
This commit is contained in:
Antoine Bartuccio 2016-08-07 20:52:53 +02:00
parent 2822d947d9
commit 8e8ee808b5
1 changed files with 1 additions and 1 deletions

2
api/views/__init__.py

@ -24,7 +24,7 @@ class RightManagedModelViewSet(viewsets.ModelViewSet):
try:
if (request.method == 'GET' and can_view(obj, user)):
return res
elif (request.method == 'PUSH' and can_edit(obj, user)):
elif (request.method != 'GET' and can_edit(obj, user)):
return res
except: pass # To prevent bug with Anonymous user
raise PermissionDenied