Skip to content
Snippets Groups Projects
Commit 158bb6a6 authored by Ravi Tripathi's avatar Ravi Tripathi
Browse files

Merge branch 'update_for_samltest_idp' into 'master'

Update to only use eppa if it's provided in the headers

Closes #3

See merge request rc/self-reg-form!60
parents 9bd7d0e6 c6942887
No related branches found
No related tags found
No related merge requests found
...@@ -44,7 +44,6 @@ def create_app(config_name): ...@@ -44,7 +44,6 @@ def create_app(config_name):
Bootstrap(app) # allowing app to use bootstrap Bootstrap(app) # allowing app to use bootstrap
def get_authorized_user(): def get_authorized_user():
user = { user = {
"username": request.headers.get("REMOTE_USER"), "username": request.headers.get("REMOTE_USER"),
"fullname": request.headers.get("Displayname"), "fullname": request.headers.get("Displayname"),
...@@ -58,7 +57,6 @@ def create_app(config_name): ...@@ -58,7 +57,6 @@ def create_app(config_name):
"/", methods=["GET", "POST"] "/", methods=["GET", "POST"]
) # initial route to display the reg page ) # initial route to display the reg page
def index(): def index():
valid_eppa = app_vars.valid_eppa valid_eppa = app_vars.valid_eppa
if "uid" not in session: if "uid" not in session:
...@@ -71,11 +69,14 @@ def create_app(config_name): ...@@ -71,11 +69,14 @@ def create_app(config_name):
"redir", app_vars.default_referrer "redir", app_vars.default_referrer
) )
if not any(item in session["user"].get("eppa") for item in valid_eppa): if "eppa" in request.headers:
return render_template( if not any(
"account/unauthorized.html", item in session["user"].get("eppa") for item in valid_eppa
unauthorized_msg=messages.unauthorized_message, ):
) return render_template(
"account/unauthorized.html",
unauthorized_msg=messages.unauthorized_message,
)
if rc_util.check_state(session["user"].get("username")) == "hold": if rc_util.check_state(session["user"].get("username")) == "hold":
return render_template( return render_template(
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment