upstream/kallithea Commit - r2626:4abce2c1

My account pages shouldn't be accessible by anonymous users

marcink -

r2626:4abce2c1 beta

parent child

rhodecode/controllers/admin/settings.py

0 +5 -1

                      )
                      return render('admin/users/user_edit_my_account.html')
+                 @NotAnonymous()
                  def my_account_update(self):
                      """PUT /_admin/my_account_update: Update an existing item"""
                      # Forms posted to this method should contain a hidden field:
                                  % form_result.get('username'), category='error')
                      return redirect(url('my_account'))
+                 @NotAnonymous()
                  def my_account_my_repos(self):
                      all_repos = self.sa.query(Repository)\
                          .filter(Repository.user_id == self.rhodecode_user.user_id)\
                      c.user_repos = ScmModel().get_repos(all_repos)
                      return render('admin/users/user_edit_my_account_repos.html')
+                 @NotAnonymous()
                  def my_account_my_pullrequests(self):
                      c.my_pull_requests = PullRequest.query()\
                                              .filter(PullRequest.user_id==
                      return render('admin/repos/repo_add_create_repository.html')
+                 @NotAnonymous()
                  def get_hg_ui_settings(self):
                      ret = self.sa.query(RhodeCodeUi).all()

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages