Retrieve action_token in safe mode (#909)

web2py · Aug 17, 2024 · 62a50fb · 62a50fb
1 parent ec7a03a
commit 62a50fb
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/py4web/utils/auth.py b/py4web/utils/auth.py
@@ -665,11 +665,11 @@ def login(self, email, password):
         # then check for possible login blockers
         if not user:
             error = "invalid_credentials"
-        elif (user["action_token"] or "").startswith("pending-registration:"):
+        elif (user.get("action_token") or "").startswith("pending-registration:"):
             error = "registration_is_pending"
-        elif user["action_token"] == "account-blocked":
+        elif user.get("action_token") == "account-blocked":
             error = "account_is_blocked"
-        elif user["action_token"] == "pending-approval":
+        elif user.get("action_token") == "pending-approval":
             error = "account_needs_to_be_approved"
 
         # return the error or the user