From 32f154d3ead7aabaefb5c44ee8cd1943b29f9809 Mon Sep 17 00:00:00 2001 From: Calen Pennington Date: Fri, 2 Aug 2019 14:54:25 -0400 Subject: [PATCH] Switch reset_due_date over to using a StaffAccessRule with query checking --- lms/djangoapps/instructor/views/api.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lms/djangoapps/instructor/views/api.py b/lms/djangoapps/instructor/views/api.py index b8c4c0bc35..3123087eab 100644 --- a/lms/djangoapps/instructor/views/api.py +++ b/lms/djangoapps/instructor/views/api.py @@ -2908,7 +2908,7 @@ def change_due_date(request, course_id): @require_POST @ensure_csrf_cookie @cache_control(no_cache=True, no_store=True, must_revalidate=True) -@require_level('staff') +@require_course_permission(GIVE_STUDENT_EXTENSION) @require_post_params('student', 'url') def reset_due_date(request, course_id): """