def load_user(): g.appname = "AusCERT Security Training" g.headers = None if g.headers is not None: user_info = json.loads(request.headers.get('X-KVD-Payload')) g.username = user_info['user'] g.user = user_info['name'].split(" ")[0] admin = list() for row in db.get_admin_user_list(): admin.append(row['user_id']) g.admins = admin else: g.username = "******" g.user = "******" g.admins = []
def admin_manage_users(): """ add, modify and remove admin users """ admin_info = db.get_admin_user_list() read_perms = db.get_all_read_perms() write_perms = db.get_all_write_perms() org_units = db.get_org_unit_info() if g.username in g.admins: return render_template('admin_manage.html', pagetitle = g.appname + " - Manage Administrators", subtitle = "Manage Administrators", name = g.user, admin_info = admin_info, read_perms = read_perms, write_perms = write_perms, org_units = org_units, is_admin = True) return render_template('unauthorized.html', name=g.user, subtitle = "Not Authorized", is_admin = False)