def ctx_proc_userdata():
userdata = {}
userdata['username'] = '******' if current_user.is_anonymous() else current_user.name
userdata['user_is_authenticated'] = current_user.is_authenticated()
userdata['user_is_admin'] = current_user.is_admin()
return userdata
def inject_user():
"""Tell the view whether someone is logged in or not"""
return {'logged_in': current_user.is_active(),
'is_admin': current_user.is_active() and current_user.is_admin()}
def decorated_view(*args, **kwargs):
logger.info("admin access attempt by %s" % current_user.get_id())
if not current_user.is_admin():
return flask.abort(403) # 401 = access denied
return fn(*args, **kwargs)
def decorated_view(*args, **kwargs):
if current_user.is_admin():
return fn(*args, **kwargs)
else:
abort(403)
