Andal.LND/edx-platform
6
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

docs: improve docs (#29158)

Browse Source
This commit is contained in:
Manjinder Singh
2021-10-29 10:58:26 -04:00
committed by GitHub
parent 0c4f45a98b
commit 0ba74be102
1 changed files with 5 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
openedx/core/djangoapps/safe_sessions/middleware.py
View File

@@ -381,9 +381,10 @@ class SafeSessionMiddleware(SessionMiddleware, MiddlewareMixin):
@staticmethod
def _on_user_authentication_failed(request):
"""
To be called when user authentication fails when processing
requests in the middleware. Sets a flag to delete the user's
cookie and redirects the user to the login page.
To be called when user authentication fails when processing requests in the middleware.
Sets a flag to delete the user's cookie and does one of the following:
- Raises 401 for mobile requests and requests that are not specifically requesting a HTML response.
- Redirects to login in case request expects a HTML response.
"""
_mark_cookie_for_deletion(request)
@@ -393,6 +394,7 @@ class SafeSessionMiddleware(SessionMiddleware, MiddlewareMixin):
set_custom_attribute("safe_sessions.auth_failure", "mobile")
return HttpResponse(status=401)
# only redirect to login if client is expecting html
if 'text/html' in request.META.get('HTTP_ACCEPT', ''):
set_custom_attribute("safe_sessions.auth_failure", "redirect_to_login")
return redirect_to_login(request.path)