Handle sudo connection in the account view

Expand webadmin.views.my_account to also detect whether the current context was created via sudo If the current session was created with sudo, disable the ability to update experimenter properties and password in the UI
sbesson · Nov 29, 2023 · 80e14e3 · 80e14e3
1 parent 604d527
commit 80e14e3
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 2 deletions.
diff --git a/omeroweb/webadmin/templates/webadmin/myaccount.html b/omeroweb/webadmin/templates/webadmin/myaccount.html
@@ -293,7 +293,7 @@
 
                {% if ldapAuth %}
                <div id="password"><label>LDAP: </label>{{ ldapAuth }}</div>
-               {% else %}
+               {% elif not isSudo %}
 
                <div id="password">
 
@@ -308,8 +308,9 @@
                </div>
                {% endif %}
 
-
+               {% if not isSudo %}
                <input type="submit" value="{% trans 'Save' %}" />
+               {% endif %}
              </div>
             <div style="clear:both"></div>
        </form>

diff --git a/omeroweb/webadmin/views.py b/omeroweb/webadmin/views.py
@@ -1037,6 +1037,7 @@ def my_account(request, action=None, conn=None, **kwargs):
         isLdapUser,
         hasAvatar,
     ) = prepare_experimenter(conn)
+    isSudo = conn.getEventContext().sudoerId is not None
     try:
         defaultGroupId = defaultGroup.id
     except Exception:
@@ -1092,6 +1093,7 @@ def my_account(request, action=None, conn=None, **kwargs):
     context = {
         "form": form,
         "ldapAuth": isLdapUser,
+        "isSudo": isSudo,
         "experimenter": experimenter,
         "ownedGroups": ownedGroups,
         "password_form": password_form,