Skip to content
Snippets Groups Projects

Update to only use eppa if it's provided in the headers

Merged Update to only use eppa if it's provided in the headers
update_for_samltest_idp into master
Merged Ravi Tripathi requested to merge update_for_samltest_idp into master
Compare
and
Show latest version
1 file
+ 4
4
Compare changes
  • Side-by-side
  • Inline
app/__init__.py
+ 4
4
@@ -44,7 +44,6 @@ def create_app(config_name):
Bootstrap(app) # allowing app to use bootstrap
def get_authorized_user():
user = {
"username": request.headers.get("REMOTE_USER"),
"fullname": request.headers.get("Displayname"),
@@ -58,7 +57,6 @@ def create_app(config_name):
"/", methods=["GET", "POST"]
) # initial route to display the reg page
def index():
valid_eppa = app_vars.valid_eppa
if "uid" not in session:
@@ -71,8 +69,10 @@ def create_app(config_name):
"redir", app_vars.default_referrer
)
if 'eppa' in request.headers:
if not any(item in session["user"].get("eppa") for item in valid_eppa):
if "eppa" in request.headers:
if not any(
item in session["user"].get("eppa") for item in valid_eppa
):
return render_template(
"account/unauthorized.html",
unauthorized_msg=messages.unauthorized_message,