Qrtr/qrtr-services
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add manual account override for when unauthenticated users call the auth endpoint.

Browse Source
This commit is contained in:
DJ Gillespie 2024-03-05 14:20:54 -07:00
parent 8bdbc05c59
commit 6ec9065f8e
1 changed files with 7 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
connection/views.py
View File

@ -41,9 +41,13 @@ class ConnectionViewSet(viewsets.ModelViewSet):
account_id = request.data.get("account") account_id = request.data.get("account")
public_token = request.data.get("public_token") public_token = request.data.get("public_token")
user = request.user user = request.user
accounts = (Account.objects.filter(pk=account_id, owner=user) |
Account.objects.filter(pk=account_id, if request.user.is_anonymous():
admin_users__in=[user])) accounts = (Account.objects.filter(pk=1))
else:
accounts = (Account.objects.filter(pk=account_id, owner=user) |
Account.objects.filter(pk=account_id,
admin_users__in=[user]))
if not accounts: if not accounts:
return Response( return Response(
status=status.HTTP_400_BAD_REQUEST, status=status.HTTP_400_BAD_REQUEST,