From 632917ed372cb20edcb0168d9e9886ec5f7a0168 Mon Sep 17 00:00:00 2001
From: Sebastian Reichel <sre@ring0.de>
Date: Fri, 29 Sep 2017 21:26:46 +0200
Subject: web: properly support auth_users

---
 src/web/web.vala | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/src/web/web.vala b/src/web/web.vala
index e60b325..ea0c667 100644
--- a/src/web/web.vala
+++ b/src/web/web.vala
@@ -282,7 +282,7 @@ public class WebServer {
 		try {
 			var l = new WebSession(server, msg, path, query, client);
 
-			if(!l.superuser) {
+			if(!(l.superuser || l.auth_users)) {
 				handler_403(server, msg, path, query, client);
 				return;
 			}
@@ -321,7 +321,8 @@ public class WebServer {
 	void handler_user_entry(Soup.Server server, Soup.Message msg, string path, GLib.HashTable? query, Soup.ClientContext client, int id) {
 		try {
 			var session = new WebSession(server, msg, path, query, client);
-			if(id != session.user && !session.superuser) {
+
+			if(id != session.user && !(session.superuser || session.auth_users)) {
 				handler_403(server, msg, path, query, client);
 				return;
 			}
@@ -425,7 +426,7 @@ public class WebServer {
 
 		try {
 			var l = new WebSession(server, msg, path, query, client);
-			if(id != l.user && !l.superuser) {
+			if(id != l.user && !(l.superuser || l.auth_users)) {
 				handler_403(server, msg, path, query, client);
 				return;
 			}
-- 
cgit v1.2.3