Fix MFA enforcement on login and page load (#6356)

author: Joram Wilander <jwawilander@gmail.com> 2017-05-09 07:48:57 -0500
committer: GitHub <noreply@github.com> 2017-05-09 07:48:57 -0500
commit: 202c383d8dc23ff3c0633fff99bd7da95397fe3a (patch)
tree: b9f06ca4dd84a90fd53676347820898c951829ef /api4/context.go
parent: fb4d72bd8a3a9b533571e42cfb1b7e2d1702f6be (diff)
download: chat-202c383d8dc23ff3c0633fff99bd7da95397fe3a.tar.gz
chat-202c383d8dc23ff3c0633fff99bd7da95397fe3a.tar.bz2
chat-202c383d8dc23ff3c0633fff99bd7da95397fe3a.zip
1 files changed, 6 insertions, 2 deletions
diff --git a/api4/context.go b/api4/context.go
index 32db0ed7d..37af2c6d4 100644
--- a/api4/context.go
+++ b/api4/context.go
@@ -271,9 +271,13 @@ func (c *Context) MfaRequired() {
 			return
 		}
 
+		// Special case to let user get themself
+		if c.Path == "/api/v4/users/me" {
+			return
+		}
+
 		if !user.MfaActive {
-			c.Err = model.NewLocAppError("", "api.context.mfa_required.app_error", nil, "MfaRequired")
-			c.Err.StatusCode = http.StatusUnauthorized
+			c.Err = model.NewAppError("", "api.context.mfa_required.app_error", nil, "MfaRequired", http.StatusForbidden)
 			return
 		}
 	}
author	Joram Wilander <jwawilander@gmail.com>	2017-05-09 07:48:57 -0500
committer	GitHub <noreply@github.com>	2017-05-09 07:48:57 -0500
commit	202c383d8dc23ff3c0633fff99bd7da95397fe3a (patch)
tree	b9f06ca4dd84a90fd53676347820898c951829ef /api4/context.go
parent	fb4d72bd8a3a9b533571e42cfb1b7e2d1702f6be (diff)
download	chat-202c383d8dc23ff3c0633fff99bd7da95397fe3a.tar.gz chat-202c383d8dc23ff3c0633fff99bd7da95397fe3a.tar.bz2 chat-202c383d8dc23ff3c0633fff99bd7da95397fe3a.zip