def has_permission(): try: cookies = web.cookies() username = cookies.username session = cookies.session if not username or not session: return False return auth_check(username, session) except AttributeError: return False