Captcha errors should be noted on cookies instead of session.

Cornice 1 allowed us to note errors as belonging to the session, but Cornice 3 does not allow this. validate_captcha() was still doing things the Cornice 1 way which causes HTTP 500 errors. This commit adjusts it to note the error on the cookies instead. Signed-off-by: Randy Barlow <randy@electronsweatshop.com>
fedora-infra · Mar 6, 2018 · 900e80a · 900e80a
1 parent d6c7651
commit 900e80a
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/bodhi/server/validators.py b/bodhi/server/validators.py
@@ -1160,14 +1160,14 @@ def validate_captcha(request, **kwargs):
             return
 
         if 'captcha' not in request.session:
-            request.errors.add('session', 'captcha',
+            request.errors.add('cookies', 'captcha',
                                'Captcha cipher not in the session (replay).')
             request.errors.status = HTTPBadRequest.code
             return
 
         if request.session['captcha'] != key:
             request.errors.add(
-                'session', 'captcha', 'No captcha session cipher match (replay). %r %r' % (
+                'cookies', 'captcha', 'No captcha session cipher match (replay). %r %r' % (
                     request.session['captcha'], key))
             request.errors.status = HTTPBadRequest.code
             return