Home Explore Help
Sign In
LBP
/
netbox
mirror of https://github.com/netbox-community/netbox.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Fixes #6502: Correct permissions evaluation for running a report via the REST API

jeremystretch 4 years ago
parent
b2b3f388b1
commit
1c0f3e1b81
2 changed files with 5 additions and 1 deletions
Split View Show Diff Stats
  1. 4 0
      docs/release-notes/version-2.11.md
  2. 1 1
      netbox/extras/api/views.py

+ 4 - 0
docs/release-notes/version-2.11.md
View File 

@@ -8,6 +8,10 @@
 
 * [#6487](https://github.com/netbox-community/netbox/issues/6487) - Add location filter to cable connection form
 
 * [#6501](https://github.com/netbox-community/netbox/issues/6501) - Expose prefix depth and children on REST API serializer
 
 
+### Bug Fixes
 
+
 
+* [#6502](https://github.com/netbox-community/netbox/issues/6502) - Correct permissions evaluation for running a report via the REST API
 
+
 
 ---
 
 
 ## v2.11.4 (2021-05-25)

+ 1 - 1
netbox/extras/api/views.py
View File 

@@ -239,7 +239,7 @@ class ReportViewSet(ViewSet):
 
         Run a Report identified as "<module>.<script>" and return the pending JobResult as the result
 
         """
 
         # Check that the user has permission to run reports.
 
-        if not request.user.has_perm('extras.run_script'):
 
+        if not request.user.has_perm('extras.run_report'):
 
             raise PermissionDenied("This user does not have permission to run reports.")
 
 
         # Check that at least one RQ worker is running