From be7f87e5c323a35139cef283f6f2a693bb97beb1 Mon Sep 17 00:00:00 2001
From: Ethan Weaver <emw0022@mix.wvu.edu>
Date: Mon, 27 Jun 2022 16:13:34 -0400
Subject: [PATCH] Issue #628: admin credentials will no longer be added to the
 cache when they are not updated in the DB in PATCH
 /orgs/{orgid}/users/{username}

Signed-off-by: Ethan Weaver <emw0022@mix.wvu.edu>
---
 src/main/scala/com/horizon/exchangeapi/UsersRoutes.scala | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/main/scala/com/horizon/exchangeapi/UsersRoutes.scala b/src/main/scala/com/horizon/exchangeapi/UsersRoutes.scala
index 599bd5bb..4ed6f3fd 100644
--- a/src/main/scala/com/horizon/exchangeapi/UsersRoutes.scala
+++ b/src/main/scala/com/horizon/exchangeapi/UsersRoutes.scala
@@ -429,7 +429,7 @@ trait UsersRoutes extends JacksonSupport with AuthenticationSupport {
                 logger.debug("PATCH /orgs/" + orgid + "/users/" + username + " result: " + n)
                 if (n.asInstanceOf[Int] > 0) {
                   if (reqBody.password.isDefined) AuthCache.putUser(compositeId, hashedPw, reqBody.password.get)
-                  if (reqBody.admin.isDefined) AuthCache.putUserIsAdmin(compositeId, reqBody.admin.get)
+                  else if (reqBody.admin.isDefined) AuthCache.putUserIsAdmin(compositeId, reqBody.admin.get)
                   (HttpCode.POST_OK, ApiResponse(ApiRespType.OK, ExchMsg.translate("user.attr.updated", attrName, compositeId)))
                 } else {
                   (HttpCode.NOT_FOUND, ApiResponse(ApiRespType.NOT_FOUND, ExchMsg.translate("user.not.found", compositeId)))