Allow relaunching other user jobs with public vars

[AlanCoding]

SUMMARY

The previous check here was too restrictive.

If you can read the job then you can see the variables that the other user provided, except for encrypted variables. Thus, there is no security difference between before vs. after this change.

ISSUE TYPE

• Bugfix Pull Request

COMPONENT NAME

• API

AWX VERSION

4.0.0

ADDITIONAL INFORMATION

[softwarefactory-project-zuul]

Build failed.

• tox-awx-api-lint : SUCCESS in 1m 56s
• tox-awx-ui-lint : SUCCESS in 2m 31s
• tox-awx-api : FAILURE in 5m 19s
• tox-awx-ui : SUCCESS in 3m 45s
• tox-awx-swagger : FAILURE in 6m 39s
• tox-awx-detect-schema-change : FAILURE in 6m 38s (non-voting)

[softwarefactory-project-zuul]

Build failed.

• tox-awx-api-lint : SUCCESS in 2m 00s
• tox-awx-ui-lint : SUCCESS in 2m 24s
• tox-awx-api : FAILURE in 5m 27s
• tox-awx-ui : SUCCESS in 3m 41s
• tox-awx-swagger : FAILURE in 6m 15s
• tox-awx-detect-schema-change : FAILURE in 6m 14s (non-voting)

[softwarefactory-project-zuul]

Build succeeded.

• tox-awx-api-lint : SUCCESS in 1m 50s
• tox-awx-ui-lint : SUCCESS in 2m 12s
• tox-awx-api : SUCCESS in 5m 38s
• tox-awx-ui : SUCCESS in 4m 08s
• tox-awx-swagger : SUCCESS in 6m 18s
• tox-awx-detect-schema-change : SUCCESS in 6m 26s (non-voting)

[jbradberry]

This seems ok to me.

[wenottingham]

Note that if we ever tackle #3476 , we'll need to rethink this.

[ryanpetrello]

LGTM

[AlanCoding]

Note that if we ever tackle #3476 , we'll need to rethink this.

I think I'm okay with this. This method might not even need to change if we do that, because we're checking read access to the job already.

[softwarefactory-project-zuul]

Build succeeded (gate pipeline).

• tox-awx-api-lint : SUCCESS in 1m 49s
• tox-awx-ui-lint : SUCCESS in 2m 12s
• tox-awx-api : SUCCESS in 6m 11s
• tox-awx-ui : SUCCESS in 3m 50s
• tox-awx-swagger : SUCCESS in 6m 29s
• tox-awx-detect-schema-change : SUCCESS in 6m 35s (non-voting)
• awx-push-new-schema : SUCCESS in 6m 32s (non-voting)