iou1name/Buckler
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

check that user has permission to use app

Browse Source
This commit is contained in:
iou1name 2019-09-28 03:40:27 -04:00
parent 0f8f691a3e
commit 71c7eac463
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
buckler.py
View File

@ -67,7 +67,7 @@ async def change_password(request):
new_pw = data.get('new_password') new_pw = data.get('new_password')
verify_pw = data.get('verify_password') verify_pw = data.get('verify_password')
if not all(current_pw, new_pw, verify_pw): if not all((current_pw, new_pw, verify_pw)):
return return
if not new_pw == verify_pw: if not new_pw == verify_pw:
return return
@ -268,6 +268,11 @@ async def get_session(request):
user_id, user_sid) user_id, user_sid)
await conn.close() await conn.close()
if not data: # user not permitted to use app
error = {'error': "you do not have permission to "
"access to this application."}
return web.json_response(error)
data_meta = dict(data) data_meta = dict(data)
data_meta['last_used'] = session['last_used'].isoformat() data_meta['last_used'] = session['last_used'].isoformat()
data_meta['user_sid'] = user_sid data_meta['user_sid'] = user_sid