accounts: Reject subdomains of blacklisted domains, too

author Michael Tremer <michael.tremer@ipfire.org>

Mon, 27 Apr 2020 20:52:03 +0000 (20:52 +0000)

committer Michael Tremer <michael.tremer@ipfire.org>

Mon, 27 Apr 2020 20:52:03 +0000 (20:52 +0000)
author Michael Tremer <michael.tremer@ipfire.org>
Mon, 27 Apr 2020 20:52:03 +0000 (20:52 +0000)
committer Michael Tremer <michael.tremer@ipfire.org>
Mon, 27 Apr 2020 20:52:03 +0000 (20:52 +0000)
diff --git a/src/backend/accounts.py b/src/backend/accounts.py

index 584a865823c83eacd95279e06c76a1c3dbcae2b8..2c9f460871c03876738cb96a7a26646e69a9b34b 100644 (file)
--- a/src/backend/accounts.py
+++ b/src/backend/accounts.py
@@ -362,7 +362,7 @@ class Accounts(Object):
  
         def domain_is_blacklisted(self, domain):
                 res = self.db.get("SELECT TRUE AS found FROM blacklisted_domains \
-                       WHERE domain = %s", domain)
+                       WHERE domain = %s OR %s LIKE '%%.' || domain", domain, domain)
  
                 if res and res.found:
                         return True
author	Michael Tremer <michael.tremer@ipfire.org>
	Mon, 27 Apr 2020 20:52:03 +0000 (20:52 +0000)
committer	Michael Tremer <michael.tremer@ipfire.org>
	Mon, 27 Apr 2020 20:52:03 +0000 (20:52 +0000)