From 4b8c9afc873c066e2d4e8319308e91c8e185fb5b Mon Sep 17 00:00:00 2001
From: Eduardo Robles Elvira <edu@sequentech.io>
Date: Tue, 1 Feb 2022 14:00:04 +0100
Subject: [PATCH] allow userdraft save

---
 authapi/api/management/commands/upsert_users.py | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/authapi/api/management/commands/upsert_users.py b/authapi/api/management/commands/upsert_users.py
index 4a04f5f3..56cfecc5 100644
--- a/authapi/api/management/commands/upsert_users.py
+++ b/authapi/api/management/commands/upsert_users.py
@@ -105,7 +105,8 @@ def handle(self, *args, **options):
 
             db_user.userdata.save()
 
-            # make sure the user has permission to login as an admin
+            # make sure the user has permission to login as an admin and edit
+            # its own profile
             insert_or_update(
                 ACL,
                 dict(
@@ -115,6 +116,16 @@ def handle(self, *args, **options):
                     object_id=1
                 )
             )
+            if db_user.is_staff or db_user.is_admin:
+                insert_or_update(
+                    ACL,
+                    dict(
+                        user=db_user.userdata,
+                        perm='edit',
+                        object_type='UserData',
+                        object_id=db_user.userdata.id
+                    )
+                )
 
             for el in udata['election_permissions']:
                 # if permission list is empty, it means we have to ensure