@@ -1105,14 +1105,17 @@ def interim_request_details(request, number):
11051105 can_approve = can_approve_interim_request (meeting , request .user )
11061106
11071107 if request .method == 'POST' :
1108- if request .POST .get ('approve' ):
1108+ if request .POST .get ('approve' ) and can_approve_interim_request ( meeting , request . user ) :
11091109 meeting .session_set .update (status_id = 'scheda' )
11101110 messages .success (request , 'Interim meeting approved' )
11111111 if has_role (request .user , 'Secretariat' ):
11121112 return redirect (interim_send_announcement , number = number )
1113- if request .POST .get ('disapprove' ):
1113+ else :
1114+ return redirect (interim_pending )
1115+ if request .POST .get ('disapprove' ) and can_approve_interim_request (meeting , request .user ):
11141116 meeting .session_set .update (status_id = 'disappr' )
11151117 messages .success (request , 'Interim meeting disapproved' )
1118+ return redirect (interim_pending )
11161119
11171120 return render (request , "meeting/interim_request_details.html" , {
11181121 "meeting" : meeting ,
@@ -1126,7 +1129,7 @@ def interim_request_details(request, number):
11261129def interim_request_edit (request , number ):
11271130 '''Edit details of an interim meeting reqeust'''
11281131 meeting = get_object_or_404 (Meeting , number = number )
1129- if not can_view_interim_request (meeting , request .user ):
1132+ if not can_edit_interim_request (meeting , request .user ):
11301133 return HttpResponseForbidden ("You do not have permissions to edit this meeting request" )
11311134
11321135 SessionFormset = inlineformset_factory (
0 commit comments