From e1165a710c199008b17f28e1e84fa218189f6734 Mon Sep 17 00:00:00 2001
From: Ivlev Denis <di-erz@yandex.ru>
Date: Thu, 15 Feb 2018 17:38:14 +0300
Subject: [PATCH] Fix user perms

---
 apps/course/views.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/apps/course/views.py b/apps/course/views.py
index cb85918a..01c3ea95 100644
--- a/apps/course/views.py
+++ b/apps/course/views.py
@@ -177,10 +177,13 @@ class CourseView(DetailView):
 
     def get(self, request, *args, **kwargs):
         response = super().get(request, *args, **kwargs)
-        if (self.object.status != Course.PUBLISHED and request.user.role != User.ADMIN_ROLE) or (self.object.status != Course.PUBLISHED and request.user.role != User.AUTHOR_ROLE and self.object.author != request.user):
+        if (not request.user.is_authenticated and self.object.status != Course.PUBLISHED):
             raise Http404
         return response
 
+        # ((self.object.status != Course.PUBLISHED and request.user.role != User.ADMIN_ROLE) or
+        # (self.object.status != Course.PUBLISHED and request.user.role != User.AUTHOR_ROLE and self.object.author != request.user)):
+
     def get_context_data(self, **kwargs):
         context = super().get_context_data(**kwargs)
         context['next'] = self.request.GET.get('next', None)