From 9576ae9064993929d156f86a35179706747fd641 Mon Sep 17 00:00:00 2001 From: William Colmenares Date: Mon, 6 May 2019 11:42:58 -0400 Subject: [PATCH] Same messages in creation/deletion preventing scape chars errors in password --- dal/views.py | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/dal/views.py b/dal/views.py index 7e74e3f..6d76360 100644 --- a/dal/views.py +++ b/dal/views.py @@ -615,11 +615,13 @@ class SeedRetrieveCreate(APIView): def post(self, request): try: username = request.data['username'] - password = request.data['password'] + password = request.data[r'password'] realm = request.data['realm'] + print(password) except KeyError: return Response('You need to specify username, password, and realm values', 400) # authenticate the user against ldap + user = authenticate(username=username, password=password) if user is not None: admin_seed = config('ADMIN_SEED') @@ -636,7 +638,7 @@ class SeedRetrieveCreate(APIView): for elem in response_data: if elem['name'] == username and elem['realm'] == realm: - return Response('Your {} seed is {}'.format(realm, elem['seed']), 200) + return Response(elem, 200) # If doesn't find a match then check if the realm is allowed and create the user allowed_realms = config('ALLOWED_REALMS', cast=Csv()) if realm not in allowed_realms: