fixed request object access and logic

masci · masci · commit c19207203600 · 2013-12-19T23:57:41.000+01:00
diff --git a/oauth2_provider/views/base.py b/oauth2_provider/views/base.py
@@ -116,13 +116,13 @@ def get(self, request, *args, **kwargs):
 
             # Check to see if the user has already granted access and return
             # a successful response
-            require_approval = request.get('approval_prompt', 'auto') == 'auto'
-            if not require_approval and request.user.accesstoken_set.filter(
-                        application=kwargs['application'],
-                        expires__gt=datetime.datetime.now()).count():
+            require_approval = request.GET.get('approval_prompt', 'auto')
+            if require_approval == 'auto' and request.user.accesstoken_set.filter(
+                    application=kwargs['application'],
+                    expires__gt=datetime.datetime.now()).count():
                 uri, headers, body, status = self.create_authorization_response(
-                        request=self.request, scopes=" ".join(scopes),
-                        credentials=credentials, allow=True)
+                    request=self.request, scopes=" ".join(scopes),
+                    credentials=credentials, allow=True)
                 self.success_url = uri
                 return HttpResponseRedirect(self.success_url)
             return self.render_to_response(self.get_context_data(**kwargs))
