nikdoof/test-auth
1
0
Fork 0
mirror of https://github.com/nikdoof/test-auth.git synced 2025-12-14 06:42:16 +00:00
Code Issues Packages Projects Releases Wiki Activity

Don't allow resets of Service Acccounts that don't need a password

Browse Source
This commit is contained in:
Andrew Williams
2011-01-07 09:15:53 +00:00
parent ade8ee1c69
commit 17923ca2f2
2 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
sso/views.py
View File

@@ -215,7 +215,8 @@ def service_reset(request, serviceid=0):
except ServiceAccount.DoesNotExist: except ServiceAccount.DoesNotExist:
return redirect('sso.views.profile') return redirect('sso.views.profile')
if not acc.active: # If the account is inactive, or the service doesn't require a password, redirect
if not acc.active or ('require_password' in acc.service.settings and not acc.service.settings['require_password']):
return redirect('sso.views.profile') return redirect('sso.views.profile')
if acc.user == request.user: if acc.user == request.user:

2
templates/sso/profile.html
View File

@@ -67,7 +67,7 @@ create a login for a service click the Add Service link</p>
<td>{% if acc.active %}Yes{% else %}No{% endif %}</td> <td>{% if acc.active %}Yes{% else %}No{% endif %}</td>
<td> <td>
{% if acc.active %} {% if acc.active %}
<a href="{% url sso.views.service_reset acc.id %}">Reset</a>&nbsp;/&nbsp; {% if acc.service.settings.require_password %}<a href="{% url sso.views.service_reset acc.id %}">Reset</a>&nbsp;/&nbsp;{% endif %}
<a href="{% url sso.views.service_del acc.id %}">Delete</a> <a href="{% url sso.views.service_del acc.id %}">Delete</a>
{% if acc.service.provide_login %} {% if acc.service.provide_login %}
&nbsp;/&nbsp;<a href="{% url sso.views.service_login acc.id %}">Login</a> &nbsp;/&nbsp;<a href="{% url sso.views.service_login acc.id %}">Login</a>