From 4d5d231ef25027dab20e2bece175c1f7db9b20ea Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Laura=20Kl=C3=BCnder?= <laura@codingcatgirl.de>
Date: Mon, 16 Dec 2024 13:47:49 +0000
Subject: [PATCH] don't mix up caching with different can_grant values

---
 src/c3nav/mapdata/models/access.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/c3nav/mapdata/models/access.py b/src/c3nav/mapdata/models/access.py
index d6c79698..3bdec1e9 100644
--- a/src/c3nav/mapdata/models/access.py
+++ b/src/c3nav/mapdata/models/access.py
@@ -320,7 +320,7 @@ class AccessPermission(models.Model):
         if request.user.is_authenticated and request.user_permissions.grant_all_access:
             return AccessRestriction.get_all()
 
-        cache_key = cls.request_access_permission_key(request)
+        cache_key = cls.request_access_permission_key(request)+f':{can_grant}'
         access_restriction_ids = cache.get(cache_key, None)
         if access_restriction_ids is None:
             permissions = cls.get_for_request_with_expire_date(request, can_grant=can_grant)
@@ -371,7 +371,7 @@ class AccessPermission(models.Model):
         if UserPermissions.get_for_user(user).grant_all_access:
             return AccessRestriction.get_all()
 
-        cache_key = cls.build_access_permission_key(user_id=user.pk)
+        cache_key = cls.build_access_permission_key(user_id=user.pk)+f':{can_grant}'
         access_restriction_ids = cache.get(cache_key, None)
         if access_restriction_ids is None:
             permissions = cls.get_for_user_with_expire_date(user, can_grant=can_grant)