AAP-35609 Allow for ServiceTokenAuth in IsSuperUserOrAuditor

john-westcott-iv · Dec 5, 2024 · 679230b · 679230b
1 parent 48fd1ec
commit 679230b
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/ansible_base/lib/utils/views/permissions.py b/ansible_base/lib/utils/views/permissions.py
@@ -37,6 +37,8 @@ class IsSuperuserOrAuditor(BasePermission):
     """
 
     def has_permission(self, request, view):
+        if hasattr(view, 'allow_service_token') and getattr(view, 'allow_service_token') is True and request.auth == 'ServiceTokenAuthentication':
+            return True
         if not (request.user and request.user.is_authenticated):
             return False
         if request.user.is_superuser: