fix: prevent integrity signature creation while masquerading (#665)

2021-10-06 11:26:04 -04:00
parent 0889b17e85
commit 0bc7faaa56
3 changed files with 12 additions and 6 deletions
--- a/src/courseware/data/thunks.js
+++ b/src/courseware/data/thunks.js
@@ -303,10 +303,15 @@ export function saveSequencePosition(courseId, sequenceId, activeUnitIndex) {
  };
 }

-export function saveIntegritySignature(courseId) {
+export function saveIntegritySignature(courseId, isMasquerading) {
  return async (dispatch) => {
    try {
-      await postIntegritySignature(courseId);
+      // If the request is made by a staff user masquerading as a learner,
+      // don't actually create a signature for them on the backend. Only
+      // frontend state will be updated.
+      if (!isMasquerading) {
+        await postIntegritySignature(courseId);
+      }
      dispatch(updateModel({
        modelType: 'coursewareMeta',
        model: {