Make sure we clear owned-credentials when we delete a user

2024-10-31 23:51:09 +03:00 · 2014-08-11 10:48:34 -04:00 · 2014-08-11 10:48:34 -04:00 · 04eeffe2a7
commit 04eeffe2a7
parent 7d6cf7e2d0
1 changed files with 9 additions and 0 deletions
--- a/awx/api/views.py
+++ b/awx/api/views.py
@ -772,6 +772,15 @@ class UserDetail(RetrieveUpdateDestroyAPIView):
            if changed:
                raise PermissionDenied('Cannot change %s' % ', '.join(changed.keys()))

+    def destroy(self, request, *args, **kwargs):
+        obj = User.objects.get(pk=kwargs['pk'])
+        can_delete = request.user.can_access(User, 'delete', obj)
+        if not can_delete:
+            raise PermissionDenied('Cannot delete user')
+        for own_credential in Credential.objects.filter(user=obj):
+            own_credential.mark_inactive()
+        return super(UserDetail, self).destroy(request, *args, **kwargs)
+
 class CredentialList(ListCreateAPIView):

    model = Credential