Loading back/myfab/api.py +5 −3 Original line number Diff line number Diff line Loading @@ -354,11 +354,13 @@ def stl_upload(kind, req_id): req: PrintRequest = get_request_by_id(int(req_id)) if req == None: return jsonify({"error": "No such print request"}, status.HTTP_404_NOT_FOUND) return jsonify({"error": "No such print request"}), status.HTTP_404_NOT_FOUND required_access = REQUEST_ACCESS_USER if kind == "stl" else REQUEST_ACCESS_OPERATOR if get_access_level_to_request(req_id, current_user) < required_access: return jsonify({"error": "Access denied"}, status.HTTP_401_UNAUTHORIZED) access = get_access_level_to_request(req_id, current_user) if access < required_access: log.warn(f'Access denied for user {current_user.username} to request {req_id} access is {access}') return jsonify({"error": "Access denied"}), status.HTTP_401_UNAUTHORIZED file = request.files["file"] if file.filename == "": return jsonify({"error": "No file"}, status.HTTP_400_BAD_REQUEST) Loading Loading
back/myfab/api.py +5 −3 Original line number Diff line number Diff line Loading @@ -354,11 +354,13 @@ def stl_upload(kind, req_id): req: PrintRequest = get_request_by_id(int(req_id)) if req == None: return jsonify({"error": "No such print request"}, status.HTTP_404_NOT_FOUND) return jsonify({"error": "No such print request"}), status.HTTP_404_NOT_FOUND required_access = REQUEST_ACCESS_USER if kind == "stl" else REQUEST_ACCESS_OPERATOR if get_access_level_to_request(req_id, current_user) < required_access: return jsonify({"error": "Access denied"}, status.HTTP_401_UNAUTHORIZED) access = get_access_level_to_request(req_id, current_user) if access < required_access: log.warn(f'Access denied for user {current_user.username} to request {req_id} access is {access}') return jsonify({"error": "Access denied"}), status.HTTP_401_UNAUTHORIZED file = request.files["file"] if file.filename == "": return jsonify({"error": "No file"}, status.HTTP_400_BAD_REQUEST) Loading
