From da33b106123ec7595008869398718df3d549bb9d Mon Sep 17 00:00:00 2001
From: rubenwardy <rw@rubenwardy.com>
Date: Wed, 23 May 2018 18:42:59 +0100
Subject: [PATCH] Reduce access restrictions on user list

---
 app/templates/base.html | 1 +
 app/views/users.py      | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/app/templates/base.html b/app/templates/base.html
index f2ece29..07fe1fb 100644
--- a/app/templates/base.html
+++ b/app/templates/base.html
@@ -59,6 +59,7 @@
 							</li>
 							{% if current_user.canAccessTodoList() %}
 								<li><a href="{{ url_for('todo_page') }}">Work Queue</a></li>
+								<li><a href="{{ url_for('user_list_page') }}">User list</a></li>
 							{% endif %}
 							{% if current_user.rank == current_user.rank.ADMIN %}
 								<li><a href="{{ url_for('admin_page') }}">Admin</a></li>
diff --git a/app/views/users.py b/app/views/users.py
index c2460e1..8dec1ba 100644
--- a/app/views/users.py
+++ b/app/views/users.py
@@ -37,7 +37,7 @@ class UserProfileForm(FlaskForm):
 	submit = SubmitField("Save")
 
 @app.route("/users/", methods=["GET"])
-@rank_required(UserRank.MODERATOR)
+@login_required
 def user_list_page():
 	users = User.query.order_by(db.asc(User.rank), db.asc(User.display_name)).all()
 	return render_template("users/list.html", users=users)