Restrict group creation to the secretariat. Commit ready to merge.

- Legacy-Id: 19277
2021-08-05 14:56:28 +00:00 · 2021-08-05 14:56:28 +00:00 · 62a3a4fe41
parent 2bcd6f8ef4
commit 62a3a4fe41
1 changed files with 4 additions and 0 deletions
--- a/ietf/group/views.py
+++ b/ietf/group/views.py
@ -897,6 +897,10 @@ def edit(request, group_type=None, acronym=None, action="edit", field=None):
        if not (can_manage_group(request.user, group)
                or group.has_role(request.user, group.features.groupman_roles)):
            permission_denied(request, "You don't have permission to access this view")
+    else:
+        if not has_role(request.user, "Secretariat"):
+             permission_denied(request, "You don't have permission to access this view")
+                

    if request.method == 'POST':
        form = GroupForm(request.POST, group=group, group_type=group_type, field=field)