From 613a0034e08af84af1e2198156bbfc6900ba6551 Mon Sep 17 00:00:00 2001 From: Tomas Cohen Arazi Date: Fri, 4 Jan 2019 12:46:37 -0300 Subject: [PATCH] Bug 22071: Make authenticate_api_request stash koha.user in OAuth use case This patch makes the OAuth code stash the requestion Koha::Patron. To test: - Apply the tests patch: - Run: $ kshell k$ prove t/db_dependent/api/v1/auth_authenticate_api_request.t => FAIL: Tests fail :-( - Apply this patch - Run: k$ prove t/db_dependent/api/v1/auth_authenticate_api_request.t => SUCCESS: Tests pass :-D - Sign off =D Signed-off-by: Charles Farmer Signed-off-by: Martin Renvoize Signed-off-by: Nick Clemens --- Koha/REST/V1/Auth.pm | 2 ++ 1 file changed, 2 insertions(+) diff --git a/Koha/REST/V1/Auth.pm b/Koha/REST/V1/Auth.pm index afbe468288..aed9e2f4fa 100644 --- a/Koha/REST/V1/Auth.pm +++ b/Koha/REST/V1/Auth.pm @@ -140,6 +140,8 @@ sub authenticate_api_request { if ($valid_token) { my $patron_id = Koha::ApiKeys->find( $valid_token->{client_id} )->patron_id; my $patron = Koha::Patrons->find($patron_id); + $c->stash('koha.user' => $patron); + my $permissions = $authorization->{'permissions'}; # Check if the patron is authorized if ( haspermission($patron->userid, $permissions)