Add access role to admin

2020-05-13 12:20:09 +02:00 · 2020-05-13 12:20:09 +02:00 · 71ef9eaa7f
parent bced7c52de
commit 71ef9eaa7f
1 changed files with 14 additions and 0 deletions
--- a/src/authentic2_wallonie_connect/management/commands/wc-base-import.py
+++ b/src/authentic2_wallonie_connect/management/commands/wc-base-import.py
@ -205,6 +205,20 @@ class Command(BaseCommand):
                    if access_role not in oidc_client.authorized_roles.all():
                        oidc_client.add_authorized_role(access_role)
                        self.info(self.style.SUCCESS("MODIFIED"))
+                    appid = "-".join(slug.split("-")[1:])
+                    access_role_admin_slug = "{0}-admin".format(appid)
+                    try:
+                        access_role_admin = Role.objects.get(
+                            slug=access_role_admin_slug,
+                        )
+                    except Role.DoesNotExist:
+                        access_role_admin = None
+                    if (
+                        access_role_admin
+                        and access_role_admin not in oidc_client.authorized_roles.all()
+                    ):
+                        oidc_client.add_authorized_role(access_role_admin)
+                        self.info(self.style.SUCCESS("MODIFIED"))
                else:
                    Role.objects.filter(slug=slug, ou=ou).delete()
                claims = service.get("claims", DEFAULT_CLAIMS)