Check login is disabled before accessing default username

2025-08-02 10:55:30 -04:00 · 2021-01-09 06:35:26 +00:00 · 2021-01-09 06:35:26 +00:00 · 00e19399d7
commit 00e19399d7
parent cb723acef7
1 changed files with 2 additions and 1 deletions
--- a/src/handlers/auth_handler.cr
+++ b/src/handlers/auth_handler.cr
@ -75,7 +75,8 @@ class AuthHandler < Kemal::Handler
      #   this is why we check the default username first before checking the
      #   token.
      should_reject = true
-      if Storage.default.username_is_admin Config.current.default_username
+      if Config.current.disable_login &&
+         Storage.default.username_is_admin Config.current.default_username
        should_reject = false
      end
      if env.session.string? "token"