try catch is magic

2024-09-03 20:06:31 +02:00 · 2020-03-29 01:27:41 +01:00 · 2020-03-29 01:27:41 +01:00 · eb9ecb6451
commit eb9ecb6451
parent 9929d21fdc
2 changed files with 5 additions and 5 deletions
--- a/moulinette/interfaces/init.py
+++ b/moulinette/interfaces/init.py
@ -259,10 +259,7 @@ class BaseActionsMapParser(object):
                raise MoulinetteError("error_see_log")

        # -- 'authenticator'
-        if "authenticator" in configuration:
-            auth = configuration["authenticator"]
-        else:
-            auth = "default"
+        auth = configuration.get("authenticator", "default")
        if not is_global and isinstance(auth, str):
            # Store needed authenticator profile
            if auth not in self.global_conf["authenticator"]:
--- a/moulinette/interfaces/api.py
+++ b/moulinette/interfaces/api.py
@ -407,7 +407,10 @@ class _ActionsMapPlugin(object):
        # We check that there's a (signed) session.hash available
        # for additional security ?
        # (An attacker could not craft such signed hashed ? (FIXME : need to make sure of this))
-        s_secret = self.secrets[s_id]
+        try:
+            s_secret = self.secrets[s_id]
+        except KeyError:
+            s_secret = {}
        if profile not in request.get_cookie(
            "session.tokens", secret=s_secret, default={}
        ):