diff options
author | Vitaly Takmazov | 2019-04-26 16:40:58 +0300 |
---|---|---|
committer | Vitaly Takmazov | 2019-04-26 16:40:58 +0300 |
commit | a34350b62784d4332243ba40ffe928afd91f67d3 (patch) | |
tree | 55923327b759122d784ca1443337e94e337e095a /src/main/java/com/juick/server/www | |
parent | b3a514931460eb495538cdc49902bc083c5c147d (diff) |
Authorization checks are in spring-security for a while
Diffstat (limited to 'src/main/java/com/juick/server/www')
-rw-r--r-- | src/main/java/com/juick/server/www/controllers/MessagesWWW.java | 5 |
1 files changed, 1 insertions, 4 deletions
diff --git a/src/main/java/com/juick/server/www/controllers/MessagesWWW.java b/src/main/java/com/juick/server/www/controllers/MessagesWWW.java index aa79ee0e..41c95dcb 100644 --- a/src/main/java/com/juick/server/www/controllers/MessagesWWW.java +++ b/src/main/java/com/juick/server/www/controllers/MessagesWWW.java @@ -356,9 +356,6 @@ public class MessagesWWW { protected String doGetReaders(@PathVariable String uname, ModelMap model) throws IOException { com.juick.User user = userService.getUserByName(uname); com.juick.User visitor = UserUtils.getCurrentUser(); - if (visitor.isBanned()) { - throw new HttpForbiddenException(); - } visitor.setAvatar(webApp.getAvatarWebPath(visitor)); model.addAttribute("title", "Читатели " + user.getName()); model.addAttribute("headers", "<meta name=\"robots\" content=\"noindex\"/>"); @@ -373,7 +370,7 @@ public class MessagesWWW { protected String doGetBL(@PathVariable String uname, ModelMap model) throws IOException { com.juick.User user = userService.getUserByName(uname); com.juick.User visitor = UserUtils.getCurrentUser(); - if (visitor.isBanned() || visitor.getUid() != user.getUid()) { + if (visitor.getUid() != user.getUid()) { throw new HttpForbiddenException(); } visitor.setAvatar(webApp.getAvatarWebPath(visitor)); |