Further login validation, returned error on anonymous logout

2025-12-14 06:42:16 +00:00 · 2010-04-14 13:14:53 +01:00
parent 1915357884
commit 1e2286e927
1 changed files with 2 additions and 2 deletions
--- a/api/handlers.py
+++ b/api/handlers.py
@@ -68,7 +68,7 @@ class LogoutHandler(BaseHandler):

    def read(self, request):
        if request.user and not request.user.is_authenticated():
-            return {'auth': 'notrequired', }
+            return rc.FORBIDDEN

        logout(request)
        return { 'auth': 'logout', }
@@ -77,7 +77,7 @@ class AccessHandler(BaseHandler):
    allowed_methods = ('GET')

    def read(self, request):
-        if not request.user:
+        if not request.user and not request.user.is_authenticated():
            return rc.FORBIDDEN

        if not 'serviceid' in request.GET: