Changeset - 05dc948c9788
Parent rev.
Child rev.
[Not reviewed]
default
0 2 0
Mads Kiilerich - 7 years ago 2019-04-07 23:35:23
mads@kiilerich.com
auth: use other and better checks than is_authenticated

These are the two only uses of is_authenticated, and we are fine without it.
2 files changed with 8 insertions and 7 deletions:
kallithea/controllers/login.py
2
1
kallithea/lib/auth.py
6
6
0 comments (0 inline, 0 general)
kallithea/controllers/login.py
Show inline comments
 
@@ -107,8 +107,9 @@ class LoginController(BaseController):
 
                raise HTTPFound(location=c.came_from)
 
        else:
 
            # redirect if already logged in
 
            if request.authuser.is_authenticated:
 
            if not request.authuser.is_anonymous:
 
                raise HTTPFound(location=c.came_from)
 
            # continue to show login to default user
 

			




	
	
	
		
 
        return render('/login.html')

			




	
	
	
		
 

			




        

    


    
    

    

        

                

                    kallithea/lib/auth.py
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -701,16 +701,16 @@ class LoginRequired(object):

			




	
	
	
		
 
                raise HTTPForbidden()

			




	
	
	
		
 

			




	
	
	
		
 
        # regular user authentication

			




	
	
	
		
 
        if user.is_authenticated:

			




	
	
	
		
 
            log.info('user %s authenticated with regular auth @ %s', user, loc)

			




	
	
	
		
 
            return func(*fargs, **fkwargs)

			




	
	
	
		
 
        elif user.is_default_user:

			




	
	
	
		
 
        if user.is_default_user:

			




	
	
	
		
 
            if self.allow_default_user:

			




	
	
	
		
 
                log.info('default user @ %s', loc)

			




	
	
	
		
 
                return func(*fargs, **fkwargs)

			




	
	
	
		
 
            log.info('default user is not accepted here @ %s', loc)

			




	
	
	
		
 
        else:

			




	
	
	
		
 
            log.warning('user %s NOT authenticated with regular auth @ %s', user, loc)

			




	
	
	
		
 
        elif user.is_anonymous: # default user is disabled and no proper authentication

			




	
	
	
		
 
            log.warning('user is anonymous and NOT authenticated with regular auth @ %s', loc)

			




	
	
	
		
 
        else: # regular authentication

			




	
	
	
		
 
            log.info('user %s authenticated with regular auth @ %s', user, loc)

			




	
	
	
		
 
            return func(*fargs, **fkwargs)

			




	
	
	
		
 
        raise _redirect_to_login()

			




	
	
	
		
 

			




	
	
	
		
 

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.