cafe-grader-web

Commit r284:e64cd998f824 public

parent | child
Description:
fixed admin authorization bug in single user mode
Commit status:
[Not Reviewed]
References:
default
Diff options:
Raw Diff | Patch Diff | Download Diff | Ignore whitespace | Increase context
Comments:
0 Commit comments 0 Inline Comments
Unresolved TODOs:
There are no unresolved TODOs
Side by Side Unified
Expand All Files Collapse All Files Wide Mode Diff
Add another comment
Browse Files

r284:e64cd998f824 - - 1 file changed: 1 inserted, 1 deleted

Show file before | Show file after | Raw diff | Download diff | Ignore whitespace Increase context Show commentsHide comments
@@ -24,25 +24,25
24 protected
24 protected
25
25
26 def authenticate
26 def authenticate
27 unless session[:user_id]
27 unless session[:user_id]
28 redirect_to :controller => 'main', :action => 'login'
28 redirect_to :controller => 'main', :action => 'login'
29 return false
29 return false
30 end
30 end
31
31
32 #Configuration.reload
32 #Configuration.reload
33 # check if run in single user mode
33 # check if run in single user mode
34 if (Configuration[SINGLE_USER_MODE_CONF_KEY])
34 if (Configuration[SINGLE_USER_MODE_CONF_KEY])
35 user = User.find(session[:user_id])
35 user = User.find(session[:user_id])
36 - if user==nil or user.login != 'root'
36 + if user==nil or (not user.admin?)
37 redirect_to :controller => 'main', :action => 'login'
37 redirect_to :controller => 'main', :action => 'login'
38 return false
38 return false
39 end
39 end
40 end
40 end
41
41
42 return true
42 return true
43 end
43 end
44
44
45 def authorization
45 def authorization
46 return false unless authenticate
46 return false unless authenticate
47 user = User.find(session[:user_id])
47 user = User.find(session[:user_id])
48 unless user.roles.detect { |role|
48 unless user.roles.detect { |role|
You need to be logged in to leave comments. Login now