From d4573e8c25682ecf762516183e0f9b75018cf2d1 Mon Sep 17 00:00:00 2001
From: Raphael Michel <mail@raphaelmichel.de>
Date: Sat, 21 Jan 2017 14:29:56 +0100
Subject: [PATCH] Permission bypass for superusers

---
 src/pretix/control/permissions.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/pretix/control/permissions.py b/src/pretix/control/permissions.py
index 11da41c8ed..088d72a9b9 100644
--- a/src/pretix/control/permissions.py
+++ b/src/pretix/control/permissions.py
@@ -14,6 +14,8 @@ def event_permission_required(permission):
             if not request.user.is_authenticated:  # NOQA
                 # just a double check, should not ever happen
                 raise PermissionDenied()
+            if request.user.is_superuser:
+                return function(request, *args, **kw)
             try:
                 perm = EventPermission.objects.get(
                     event=request.event,
@@ -28,7 +30,7 @@ def event_permission_required(permission):
                         allowed = getattr(perm, permission)
                 except AttributeError:
                     pass
-                if allowed:
+                if allowed or request.user.is_superuser:
                     return function(request, *args, **kw)
             raise PermissionDenied(_('You do not have permission to view this content.'))
         return wrapper
@@ -58,6 +60,8 @@ def organizer_permission_required(permission):
             if not request.user.is_authenticated:  # NOQA
                 # just a double check, should not ever happen
                 raise PermissionDenied()
+            if request.user.is_superuser:
+                return function(request, *args, **kw)
             try:
                 perm = OrganizerPermission.objects.get(
                     organizer=request.organizer,