diff options
| author | bwarsaw | 2001-08-16 06:35:04 +0000 |
|---|---|---|
| committer | bwarsaw | 2001-08-16 06:35:04 +0000 |
| commit | 3938f49ec1ef176966d43fece3a3fc3a5abbb4fc (patch) | |
| tree | 4801fb74e3ac4dd70ae311fb61e188a3f5d982db /Mailman/SecurityManager.py | |
| parent | f880b7e91270dabcbdfa0cbff1c91dcf8ef2cc63 (diff) | |
| download | mailman-3938f49ec1ef176966d43fece3a3fc3a5abbb4fc.tar.gz mailman-3938f49ec1ef176966d43fece3a3fc3a5abbb4fc.tar.zst mailman-3938f49ec1ef176966d43fece3a3fc3a5abbb4fc.zip | |
Diffstat (limited to 'Mailman/SecurityManager.py')
| -rw-r--r-- | Mailman/SecurityManager.py | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/Mailman/SecurityManager.py b/Mailman/SecurityManager.py index f2fe8f04e..f1d34bca9 100644 --- a/Mailman/SecurityManager.py +++ b/Mailman/SecurityManager.py @@ -208,7 +208,7 @@ class SecurityManager: def MakeCookie(self, authcontext, user=None): key, secret = self.AuthContextInfo(authcontext, user) - if key is None or secret is None: + if key is None or secret is None or not isinstance(secret, StringType): raise Errors.MMBadUserError # Timestamp issued = int(time.time()) @@ -283,7 +283,7 @@ class SecurityManager: # Do the guts of the cookie check, for one authcontext/user # combination. key, secret = self.AuthContextInfo(authcontext, user) - if not c.has_key(key): + if not c.has_key(key) or not isinstance(secret, StringType): return 0 # Undo the encoding we performed in MakeCookie() above try: |