local-it/dashboard
0
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

reject consent request

Browse source 
when the user doesn't have permissions for app reject
This commit is contained in:
Davor 2022-05-30 12:25:42 +02:00
parent c153b04c62
commit 2a28c4d55b
1 changed files with 10 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
web/login/login.py
View file

@ -262,14 +262,19 @@ def consent():
.filter(AppRole.user_id == user.uuid) .filter(AppRole.user_id == user.uuid)
.first() .first()
) )
print(role_object)
if role_object is None or role_object.role_id is None: if role_object is None or role_object.role_id is None:
# If there is no role in app_roles or the role_id for an app is null user has no permissions # If there is no role in app_roles or the role_id for an app is null user has no permissions
# TODO: how to handle if the user has no access for an app?
current_app.logger.error(f"User has no access for: {app_obj.name}") current_app.logger.error(f"User has no access for: {app_obj.name}")
app_role = RoleService.get_role_by_id(role_object.role_id) return redirect(
if (app_role is not None): consent_request.reject(
roles.append(app_role.name) error="No access",
error_description="The user has no access for app",
error_hint="Contact your administrator",
status_code=401,
)
)
else:
roles.append(role_object.role.name)
current_app.logger.info(f"Using '{roles}' when applying consent for {kratos_id}") current_app.logger.info(f"Using '{roles}' when applying consent for {kratos_id}")