6663: Admins and repository owners can_manage, not just can_write

(even though that might not translate to any additional functions with
the current gitolite config).

diff --git a/services/api/app/controllers/arvados/v1/repositories_controller.rb b/services/api/app/controllers/arvados/v1/repositories_controller.rb
index e61206d1a7186a520f8d4828c79e8ed25a582b9c..4bf9a6a0945462e2bf74596d620ec21575541844 100644 (file)
--- a/services/api/app/controllers/arvados/v1/repositories_controller.rb
+++ b/services/api/app/controllers/arvados/v1/repositories_controller.rb
@@ -62,12 +62,12 @@ class Arvados::V1::RepositoriesController < ApplicationController
           evidence << {name: perm.name, user_uuid: perm.tail_uuid}
         end
       end
-      # Owner of the repository, and all admins, can RW.
+      # Owner of the repository, and all admins, can do everything.
       ([repo.owner_uuid] | admins).each do |user_uuid|
         # Except: no permissions for inactive users, even if they own
         # repositories.
         next unless users[user_uuid]
-        evidence << {name: 'can_write', user_uuid: user_uuid}
+        evidence << {name: 'can_manage', user_uuid: user_uuid}
       end
       # Distill all the evidence about permissions on this repository
       # into one hash per user, of the form {'can_xxx' => true, ...}.