Commit af3811b3 by Bálint Máhonfai

Fix potential security issue if org id is "root"

parent ceb076c5
Pipeline #934 passed with stage
in 0 seconds
...@@ -56,7 +56,7 @@ class Store(object): ...@@ -56,7 +56,7 @@ class Store(object):
raise NoStoreException raise NoStoreException
if not user.profile.org_id: if not user.profile.org_id:
raise NoOrgIdException raise NoOrgIdException
self.username = user.profile.org_id self.username = 'u-%s' % user.profile.org_id
self.request_args = {'verify': settings.STORE_VERIFY_SSL} self.request_args = {'verify': settings.STORE_VERIFY_SSL}
if settings.STORE_SSL_AUTH: if settings.STORE_SSL_AUTH:
self.request_args['cert'] = (settings.STORE_CLIENT_CERT, self.request_args['cert'] = (settings.STORE_CLIENT_CERT,
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or sign in to comment