From c6062c041860d686fbf2ff7572f0e95f9edf9a5b Mon Sep 17 00:00:00 2001 From: Montana Date: Wed, 23 Jan 2019 13:27:04 -0500 Subject: [PATCH] Allow CCPO to create TO on anyone's portfolio --- atst/domain/authz.py | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/atst/domain/authz.py b/atst/domain/authz.py index a893e0b1..5b476aad 100644 --- a/atst/domain/authz.py +++ b/atst/domain/authz.py @@ -6,7 +6,9 @@ from atst.domain.exceptions import UnauthorizedError class Authorization(object): @classmethod def has_portfolio_permission(cls, user, portfolio, permission): - return permission in PortfolioRoles.portfolio_role_permissions(portfolio, user) + return permission in PortfolioRoles.portfolio_role_permissions( + portfolio, user + ) or Authorization.is_ccpo(user) @classmethod def has_atat_permission(cls, user, permission):