add filter active and phantom for login view

2021-04-08 21:19:24 +02:00 · 2021-04-08 21:19:24 +02:00 · 17a744a660
parent 9a43ab0097
commit 17a744a660
1 changed files with 1 additions and 1 deletions
--- a/ereuse_devicehub/resources/user/views.py
+++ b/ereuse_devicehub/resources/user/views.py
@ -18,7 +18,7 @@ def login():
    user_s = g.resource_def.SCHEMA(only=('email', 'password'))  # type: UserS
    # noinspection PyArgumentList
    u = request.get_json(schema=user_s)
-    user = User.query.filter_by(email=u['email']).one_or_none()
+    user = User.query.filter_by(email=u['email'], active=True, phantom=False).one_or_none()
    if user and user.password == u['password']:
        schema_with_token = g.resource_def.SCHEMA(exclude=set())
        return schema_with_token.jsonify(user)