Merge branch 'production' into change/feature/promotion-program

1 files changed, 2 insertions, 2 deletions

diff --git a/indoteknik_api/controllers/controller.py b/indoteknik_api/controllers/controller.py
index 12305d92..4d6716b2 100644
--- a/indoteknik_api/controllers/controller.py
+++ b/indoteknik_api/controllers/controller.py
@@ -12,7 +12,7 @@ import functools
 
 
 class Controller(http.Controller):
-    jwt_secret_key = "NTNv7j0TuYARvmNMmWXo6fKvM4o6nvaUi9ryX38ZHL1bkrnD1ObOQ8JAUmHCBq7Iy7otZcyAagBLHVKvvYaIpmMuxmARQ97jUVG16Jkpkp1wXOPsrF9zwew6TpczyHkHgX5EuLg2MeBuiTqJACs1J0apruOOJCggOtkjB4c"
+    jwt_secret_key = "NTNv7j0TuYARvmNMmWXo6fKvM4o6nvaUi9ryX38ZHL1bkrnD1ObOQ8JAUmHCBq7Iy7otZcyAagBLHVKvvYaIpmMuxmARQ97jUVG16Jkpkp1wXOPsrF9zwew6TpczyHkHgX5EuLg2MeBuiTqJACs1J0apruOOJCggOtkjB"
     
     @staticmethod
     def must_authorized(private=False, private_key=''):
@@ -28,7 +28,7 @@ class Controller(http.Controller):
                 self.set_user_pricelist_ctx()
                 
                 if private:
-                    auth_key = int(auth[private_key])
+                    auth_key = None if isinstance(auth, bool) else auth[private_key]
                     param_key = int(kwargs.get(private_key, -1))
                     if auth_key != param_key:
                         return self.unauthorized_response()