diff --git a/app/permissions/auth.py b/app/permissions/auth.py index 360b77c73edf15cd252939a3011a383e72c7e60d..fb6bfbd95db87013f9f0278b67761024044bbd1b 100644 --- a/app/permissions/auth.py +++ b/app/permissions/auth.py @@ -63,11 +63,15 @@ class AuthNeed(Permission): # Check permissions # The self.bool_ variable is a boolean if no value is passed in - CLAIMS_NAMESPACE = current_app.config['AUTH0_CLAIMS_NAMESPACE'] - actual_permissions = payload['{}permissions'.format(CLAIMS_NAMESPACE)] - for permission in self.required_permissions: - if permission not in actual_permissions: + if self.required_permissions: + CLAIMS_NAMESPACE = current_app.config['AUTH0_CLAIMS_NAMESPACE'] + permission_key = '{}permissions'.format(CLAIMS_NAMESPACE) + if permission_key not in payload: return False + actual_permissions = payload[permission_key] + for permission in self.required_permissions: + if permission not in actual_permissions: + return False return True return False