From d60e11bc289eb3bf1ad365fabfaa5387657e07c1 Mon Sep 17 00:00:00 2001 From: kindly Date: Tue, 13 Nov 2012 14:04:47 +0000 Subject: [PATCH] [2939] fix so that users can not create dataset if belong to no org --- ckan/new_authz.py | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/ckan/new_authz.py b/ckan/new_authz.py index 674e0f0f81a..a92274fbb8f 100644 --- a/ckan/new_authz.py +++ b/ckan/new_authz.py @@ -137,13 +137,15 @@ def has_user_permission_for_some_org(user_name, permission): group_ids = [] for row in q.all(): group_ids.append(row.group_id) + # if not in any groups has no permissions + if not group_ids: + return False # see if any of the groups are orgs q = model.Session.query(model.Group) \ .filter(model.Group.is_organization == True) \ - .filter(model.Group.state == 'active') - if group_ids: - q = q.filter(model.Group.id.in_(group_ids)) + .filter(model.Group.state == 'active') \ + .filter(model.Group.id.in_(group_ids)) return bool(q.count())