From 33b0068f498de1d7dbb61bbcd45298c52a31cbe1 Mon Sep 17 00:00:00 2001 From: Ewall555 Date: Tue, 8 Jul 2025 07:17:19 +0000 Subject: [PATCH] feat: exclude SSO token permissions for change and delete actions --- apps/rbac/const.py | 1 + 1 file changed, 1 insertion(+) diff --git a/apps/rbac/const.py b/apps/rbac/const.py index 1c81b05fe..b8b034f94 100644 --- a/apps/rbac/const.py +++ b/apps/rbac/const.py @@ -24,6 +24,7 @@ exclude_permissions = ( ('authentication', 'privatetoken', '*', '*'), ('authentication', 'connectiontoken', 'delete,change', 'connectiontoken'), ('authentication', 'connectiontoken', 'view', 'connectiontokensecret'), + ('authentication', 'ssotoken', 'change,delete', 'ssotoken'), ('authentication', 'superconnectiontoken', 'change,delete', 'superconnectiontoken'), ('authentication', 'temptoken', 'delete', 'temptoken'), ('users', 'userpasswordhistory', '*', '*'),