PermissionDenied -> ret HttpResponseFordbidden()

2014-08-14 00:56:07 -07:00 · 2014-08-14 00:56:07 -07:00 · 50b7c5027c
commit 50b7c5027c
parent 5c590caa75
2 changed files with 5 additions and 5 deletions
--- a/issue/middleware.py
+++ b/issue/middleware.py
@ -1,4 +1,4 @@
-from django.core.exceptions import ImproperlyConfigured, PermissionDenied
+from django.core.exceptions import ImproperlyConfigured
 from django.core.exceptions import ObjectDoesNotExist
 from django.http import HttpResponseForbidden
 from django.contrib.auth.decorators import login_required
@ -56,7 +56,7 @@ class ProjectMiddleware:
            project = projects.get(name=project)
        except ObjectDoesNotExist:
            if request.user.is_authenticated():
-                raise PermissionDenied()
+                return HttpResponseForbidden()
            else:
                return login_required(view)(request, *view_args, **view_kwargs)
        view_kwargs['project'] = project
--- a/issue/views.py
+++ b/issue/views.py
@ -1,6 +1,6 @@
 from django.shortcuts import render, redirect, get_object_or_404
 from django.contrib import messages
-from django.core.exceptions import ObjectDoesNotExist, PermissionDenied
+from django.core.exceptions import ObjectDoesNotExist
 from django.contrib.auth.decorators import login_required
 from django.http import Http404, HttpResponseForbidden
@ -352,13 +352,13 @@ def issue_edit(request, project, issue=None):
    if issue:
        if not request.user.has_perm('modify_issue', project):
-            raise PermissionDenied
+            return HttpResponseForbidden()
        issue = get_object_or_404(Issue, project=project.name, id=issue)
        init_data = {'title': issue.title,
                     'description': issue.description}
    else:
        if not request.user.has_perm('create_issue', project):
-            raise PermissionDenied
+            return HttpResponseForbidden()
        issue = None
        init_data = None