From f809e124e2d05f4fb052cca49e74cb790e81f4b6 Mon Sep 17 00:00:00 2001 From: Rafi Zadanly Date: Wed, 29 Nov 2023 15:33:14 +0700 Subject: Bug fix controller api and update jwt secret key --- indoteknik_api/controllers/controller.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'indoteknik_api/controllers/controller.py') diff --git a/indoteknik_api/controllers/controller.py b/indoteknik_api/controllers/controller.py index 12305d92..4d6716b2 100644 --- a/indoteknik_api/controllers/controller.py +++ b/indoteknik_api/controllers/controller.py @@ -12,7 +12,7 @@ import functools class Controller(http.Controller): - jwt_secret_key = "NTNv7j0TuYARvmNMmWXo6fKvM4o6nvaUi9ryX38ZHL1bkrnD1ObOQ8JAUmHCBq7Iy7otZcyAagBLHVKvvYaIpmMuxmARQ97jUVG16Jkpkp1wXOPsrF9zwew6TpczyHkHgX5EuLg2MeBuiTqJACs1J0apruOOJCggOtkjB4c" + jwt_secret_key = "NTNv7j0TuYARvmNMmWXo6fKvM4o6nvaUi9ryX38ZHL1bkrnD1ObOQ8JAUmHCBq7Iy7otZcyAagBLHVKvvYaIpmMuxmARQ97jUVG16Jkpkp1wXOPsrF9zwew6TpczyHkHgX5EuLg2MeBuiTqJACs1J0apruOOJCggOtkjB" @staticmethod def must_authorized(private=False, private_key=''): @@ -28,7 +28,7 @@ class Controller(http.Controller): self.set_user_pricelist_ctx() if private: - auth_key = int(auth[private_key]) + auth_key = None if isinstance(auth, bool) else auth[private_key] param_key = int(kwargs.get(private_key, -1)) if auth_key != param_key: return self.unauthorized_response() -- cgit v1.2.3