Add a user info scope and thread it through the code. Protect the org modification API.

2014-03-18 19:21:27 -04:00 · 2014-03-18 19:21:27 -04:00 · 64071b9e8e
commit 64071b9e8e
parent 89556172d5
13 changed files with 144 additions and 115 deletions
--- a/endpoints/common.py
+++ b/endpoints/common.py
@ -63,7 +63,7 @@ class _LoginWrappedDBUser(UserMixin):
 def common_login(db_user):
  if login_user(_LoginWrappedDBUser(db_user.username, db_user)):
    logger.debug('Successfully signed in as: %s' % db_user.username)
-    new_identity = QuayDeferredPermissionUser(db_user.username, 'username')
+    new_identity = QuayDeferredPermissionUser(db_user.username, 'username', {'direct_user_login'})
    identity_changed.send(app, identity=new_identity)
    return True
  else: