Allow site admin to check /api/v1/orgs endpoints (#10867)

Fix #9950 Signed-off-by: Andrew Thornton <art27@cantab.net>
2020-03-28 19:45:55 +00:00 · 2020-03-28 19:45:55 +00:00 · 48890ce546
commit 48890ce546
parent 052bff0cff
2 changed files with 2 additions and 2 deletions
--- a/routers/api/v1/org/member.go
+++ b/routers/api/v1/org/member.go
@ -69,7 +69,7 @@ func ListMembers(ctx *context.APIContext) {
 			ctx.Error(http.StatusInternalServerError, "IsOrgMember", err)
 			return
 		}
-		publicOnly = !isMember
+		publicOnly = !isMember && !ctx.User.IsAdmin
 	}
 	listMembers(ctx, publicOnly)
 }
--- a/routers/api/v1/org/team.go
+++ b/routers/api/v1/org/team.go
@ -320,7 +320,7 @@ func GetTeamMembers(ctx *context.APIContext) {
 	if err != nil {
 		ctx.Error(http.StatusInternalServerError, "IsOrganizationMember", err)
 		return
-	} else if !isMember {
+	} else if !isMember && !ctx.User.IsAdmin {
 		ctx.NotFound()
 		return
 	}