zedfrigg/bookwyrm
1
0
Fork 0
Code Activity

Adds permissions checking for admin models

Browse source
This commit is contained in:
Mouse Reeve 2022-09-19 09:51:41 -07:00
parent e51980bc12
commit 330be16516
5 changed files with 35 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

2
bookwyrm/models/report.py
View file

@ -25,7 +25,7 @@ class Report(BookWyrmModel):
def raise_not_editable(self, viewer):
"""instead of user being the owner field, it's reporter"""
if self.reporter == viewer:
if self.reporter == viewer or viewer.has_perm("bookwyrm.moderate_user"):
return
raise PermissionDenied()