From 2ebd92aca2dd8373895a4620d621a57ea0849c25 Mon Sep 17 00:00:00 2001
From: Étienne Loks <etienne.loks@iggdrasil.net>
Date: Mon, 19 Jan 2026 15:53:24 +0100
Subject: 🚑️ dating form: fix permission for "administrator"
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 archaeological_context_records/views.py | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/archaeological_context_records/views.py b/archaeological_context_records/views.py
index 1c6cdb701..2684afc9f 100644
--- a/archaeological_context_records/views.py
+++ b/archaeological_context_records/views.py
@@ -201,12 +201,13 @@ def get_dating_form(model, dating_model, url_name):
             item = model.objects.get(pk=pk)
         except model.DoesNotExist:
             raise Http404()
+        # permission not provided
+        if not current_right:
+            raise PermissionDenied()
+        # specificaly check permission for own item, otherwise already checked
         if "_own_" in current_right:
             if not request.user.has_perm(current_right, item):
                 raise PermissionDenied()
-        elif current_right:
-            if not request.user.has_perm(current_right):
-                raise PermissionDenied()
         initial = {}
         if dating_pk:
             try:
-- 
cgit v1.2.3