diff options
author | Sebastian Reichel <sre@ring0.de> | 2017-09-29 21:26:46 +0200 |
---|---|---|
committer | Sebastian Reichel <sre@ring0.de> | 2017-09-29 21:26:46 +0200 |
commit | 632917ed372cb20edcb0168d9e9886ec5f7a0168 (patch) | |
tree | ba5dc1b2757b486bacf67c0288c7c7393abb189e | |
parent | dbfcf7a9c32259e25e14b6684eb0d536d9018bfb (diff) | |
download | serial-barcode-scanner-632917ed372cb20edcb0168d9e9886ec5f7a0168.tar.bz2 |
web: properly support auth_users
-rw-r--r-- | src/web/web.vala | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/src/web/web.vala b/src/web/web.vala index e60b325..ea0c667 100644 --- a/src/web/web.vala +++ b/src/web/web.vala @@ -282,7 +282,7 @@ public class WebServer { try { var l = new WebSession(server, msg, path, query, client); - if(!l.superuser) { + if(!(l.superuser || l.auth_users)) { handler_403(server, msg, path, query, client); return; } @@ -321,7 +321,8 @@ public class WebServer { void handler_user_entry(Soup.Server server, Soup.Message msg, string path, GLib.HashTable? query, Soup.ClientContext client, int id) { try { var session = new WebSession(server, msg, path, query, client); - if(id != session.user && !session.superuser) { + + if(id != session.user && !(session.superuser || session.auth_users)) { handler_403(server, msg, path, query, client); return; } @@ -425,7 +426,7 @@ public class WebServer { try { var l = new WebSession(server, msg, path, query, client); - if(id != l.user && !l.superuser) { + if(id != l.user && !(l.superuser || l.auth_users)) { handler_403(server, msg, path, query, client); return; } |