summaryrefslogtreecommitdiff
path: root/ishtar_common/views.py
diff options
context:
space:
mode:
Diffstat (limited to 'ishtar_common/views.py')
-rw-r--r--ishtar_common/views.py4
1 files changed, 3 insertions, 1 deletions
diff --git a/ishtar_common/views.py b/ishtar_common/views.py
index 5fc717c9f..ba583438c 100644
--- a/ishtar_common/views.py
+++ b/ishtar_common/views.py
@@ -201,10 +201,12 @@ def get_item(model, func_name, default_name, extra_request_keys=[],
# if not specific any perm is relevant (read right)
if specific_perms and perm not in specific_perms:
continue
- if request.user.has_perm(perm):
+ if request.user.has_perm(perm) \
+ or request.user.ishtaruser.has_right(perm):
allowed = True
if "_own_" not in perm:
own = False
+ break # max right reach
if not allowed:
return HttpResponse(None, mimetype='text/plain')
if 'type' in dct:
generated by cgit v1.2.3 (git 2.39.1) at 2025-10-16 17:51:09 +0000