Merge pull request #35 from glyptodon/user-perms

GUAC-962: Do not attempt to query users unless absolutely necessary.
2025-09-06 13:17:41 +00:00 · 2014-12-27 17:01:40 -08:00
parent bdf41b2c65 c7485fb3c3
commit bfe30ef981
1 changed files with 12 additions and 4 deletions
--- a/guacamole/src/main/java/org/glyptodon/guacamole/net/basic/rest/user/UserRESTService.java
+++ b/guacamole/src/main/java/org/glyptodon/guacamole/net/basic/rest/user/UserRESTService.java
@@ -325,10 +325,18 @@ public class UserRESTService {

        UserContext userContext = authenticationService.getUserContext(authToken);

-        // Get the user
-        User user = userContext.getUserDirectory().get(username);
-        if (user == null)
-            throw new GuacamoleResourceNotFoundException("No such user: \"" + username + "\"");
+        User user;
+
+        // If username is own username, just use self - might not have query permissions
+        if (userContext.self().getUsername().equals(username))
+            user = userContext.self();
+
+        // If not self, query corresponding user from directory
+        else {
+            user = userContext.getUserDirectory().get(username);
+            if (user == null)
+                throw new GuacamoleResourceNotFoundException("No such user: \"" + username + "\"");
+        }

        return new APIPermissionSet(user.getPermissions());