Fix auth handling of the session/info

2024-11-24 02:20:08 +00:00 · 2022-05-25 17:40:35 -04:00 · 2022-05-25 17:40:35 -04:00 · 3c3d6bb314
commit 3c3d6bb314
parent f6a17b5f32
1 changed files with 1 additions and 1 deletions
--- a/confluent_server/confluent/auth.py
+++ b/confluent_server/confluent/auth.py
@ -162,7 +162,7 @@ def authorize(name, element, tenant=False, operation='create',
        return False
    manager = configmanager.ConfigManager(tenant, username=user)
    userobj = manager.get_user(user)
-    if element.startswith('/sessions/current/webauthn/registered_credentials/') or  element.startswith('/sessions/current/webauthn/validate/'):
+    if element and (element.startswith('/sessions/current/webauthn/registered_credentials/') or  element.startswith('/sessions/current/webauthn/validate/')):
        return userobj, manager, user, tenant, skipuserobj
    if userobj and userobj.get('role', None) == 'Stub':
        userobj = None