external/aurweb
0
0
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/aurweb.git synced 2025-02-03 10:43:03 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix(auth): refresh the user record on successful auth

Browse source 
This will ensure the state of `request.user` is good to go
for any other users which obtain it after the backend.

Signed-off-by: Kevin Morris <kevr@0cost.org>
This commit is contained in:
Kevin Morris 2021-12-09 23:01:45 -08:00
parent d0e183a738
commit c47578f158
No known key found for this signature in database
GPG key ID: F7E46DED420788F3
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
aurweb/auth/__init__.py
View file

@ -122,6 +122,7 @@ class BasicAuthBackend(AuthenticationBackend):
# exists, due to ForeignKey constraints in the schema upheld
# by mysqlclient.
user = db.query(User).filter(User.ID == record.UsersID).first()
db.refresh(user)
user.nonce = util.make_nonce()
user.authenticated = True