sboulahtit/orion
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0583dd2cc4155ca4726ed90b1b0ea82e7985c889
orion/tests/integration/security
History
Samir Boulahtit 4ba911e263 fix: redirect to login on authorization errors for HTML pages 
When a session times out or user accesses pages with wrong role,
redirect to login instead of showing error page.

Changes:
- Extend exception handler to redirect on 403 errors with auth codes
- Add tests for HTML page auth redirect behavior

Error codes that trigger redirect:
- ADMIN_REQUIRED, INSUFFICIENT_PERMISSIONS, USER_NOT_ACTIVE
- VENDOR_ACCESS_DENIED, UNAUTHORIZED_VENDOR_ACCESS
- VENDOR_OWNER_ONLY, INSUFFICIENT_VENDOR_PERMISSIONS
- CUSTOMER_NOT_AUTHORIZED

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-24 22:19:43 +01:00
..
__init__.py
QC check
2025-09-21 13:00:10 +02:00
test_authentication.py
fix: correct tojson|safe usage in templates and update validator
2025-12-13 22:59:51 +01:00
test_authorization.py
fix: redirect to login on authorization errors for HTML pages
2025-12-24 22:19:43 +01:00
test_input_validation.py
fix: correct tojson|safe usage in templates and update validator
2025-12-13 22:59:51 +01:00