Add administrative bypass to user properties

2025-12-14 16:12:56 -06:00 · 2022-03-27 11:51:17 -05:00
parent 96b4dba73c
commit 39f7425cc9
3 changed files with 3 additions and 2 deletions
--- a/routes.py
+++ b/routes.py
@@ -58,7 +58,7 @@ def user(username: str):
@login_required
 def edit_user(username: str):
    user = User.query.filter_by(username=username).first_or_404()
-    if current_user.id == user.id:
+    if user.is_admin or current_user.id == user.id:
        return render_template('pages/user_edit.html', user=user)
    return redirect(url_for('main.user', username=username))