Fix public repository permissions checking.

2014-03-26 15:56:51 -04:00 · 2014-03-26 15:56:51 -04:00 · 8fefe239b5
commit 8fefe239b5
parent 4d2e090bea
2 changed files with 4 additions and 2 deletions
--- a/endpoints/api/repository.py
+++ b/endpoints/api/repository.py
@ -133,7 +133,8 @@ class RepositoryList(ApiResource):
                                                namespace=args['namespace'])

    response['repositories'] = [repo_view(repo) for repo in repo_query
-                                if ReadRepositoryPermission(repo.namespace, repo.name).can()]
+                                if (repo.visibility.name == 'public' or
+                                    ReadRepositoryPermission(repo.namespace, repo.name).can())]

    return response

--- a/endpoints/api/search.py
+++ b/endpoints/api/search.py
@ -111,5 +111,6 @@ class FindRepositories(ApiResource):
    matching = model.get_matching_repositories(prefix, username)
    return {
      'repositories': [repo_view(repo) for repo in matching
-                       if ReadRepositoryPermission(repo.namespace, repo.name).can()]
+                       if (repo.visibility.name == 'public' or 
+                           ReadRepositoryPermission(repo.namespace, repo.name).can())]
    }