UI checks for approvals by default, when it should allow

[destijl]

UI is checking client approvals by default, despite using ApiCallRouterWithoutChecks.

Here's a relevant section of logs:

DEBUG:2016-05-16 14:25:05,983 api_auth_manager:117] No router ACL rule match for user admin. Using default router ApiCallRouterWithoutChecks
DEBUG:2016-05-16 14:25:05,986 user_managers:59] data_store_access GRANTED by BasicAccessControlManager to admin (supervisor) (([u'aff4:/C.7f7f23766909b277'], 'r'), {}) with reason:
DEBUG:2016-05-16 14:25:05,986 api_auth_manager:117] No router ACL rule match for user admin. Using default router ApiCallRouterWithoutChecks
DEBUG:2016-05-16 14:25:05,987 user_managers:59] data_store_access GRANTED by BasicAccessControlManager to admin (supervisor) (([<aff4:/users/admin/approvals/client age=2016-05-16 21:25:05>], 'rq'), {}) with reason:
DEBUG:2016-05-16 14:25:05,988 user_managers:59] data_store_access GRANTED by BasicAccessControlManager to admin (supervisor) (([u'aff4:/users/admin/approvals/client'], 'r'), {}) with reason:
::1 - - [16/May/2016 14:25:05] "GET /api/users/me/approvals/client/C.7f7f23766909b277 HTTP/1.1" 200 18
::1 - - [16/May/2016 14:25:05] "GET /api/clients/C.7f7f23766909b277 HTTP/1.1" 200 4162

@We-St FYI