remove cert fingerprints for disabled users, so that they cannot send email anymore. closes #7690

author: elijah <elijah@riseup.net> 2016-01-31 14:43:19 -0800
committer: elijah <elijah@riseup.net> 2016-01-31 15:10:10 -0800
commit: e7e16318d056dbd9ec272085487cce6039627b09 (patch)
tree: 6ff86c1ae638da1ad620924037ccd41f9418b4b8 /app/controllers/v1/certs_controller.rb
parent: 16fb1c2bf33ca418a6db06217e286964077a730f (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/app/controllers/v1/certs_controller.rb b/app/controllers/v1/certs_controller.rb
index 99aec16..ffa6e35 100644
--- a/app/controllers/v1/certs_controller.rb
+++ b/app/controllers/v1/certs_controller.rb
@@ -1,6 +1,7 @@
 class V1::CertsController < ApiController
 
   before_filter :require_login, :unless => :anonymous_access_allowed?
+  before_filter :require_enabled
 
   # GET /cert
   # deprecated - we actually create a new cert and that can
@@ -18,6 +19,12 @@ class V1::CertsController < ApiController
 
   protected
 
+  def require_enabled
+    if !current_user.is_anonymous? && !current_user.enabled?
+      access_denied
+    end
+  end
+
   def service_level
     current_user.effective_service_level
   end
author	elijah <elijah@riseup.net>	2016-01-31 14:43:19 -0800
committer	elijah <elijah@riseup.net>	2016-01-31 15:10:10 -0800
commit	e7e16318d056dbd9ec272085487cce6039627b09 (patch)
tree	6ff86c1ae638da1ad620924037ccd41f9418b4b8 /app/controllers/v1/certs_controller.rb
parent	16fb1c2bf33ca418a6db06217e286964077a730f (diff)