From: Pavel Isaev <isaevpd@users.noreply.github.com>
Date: Fri, 17 Jan 2020 11:49:54 +0000 (+0200)
Subject: :lock: Check both username and password in security tutorial (#865)
X-Git-Tag: 0.47.0~4
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=174e7b1730c6b21eb015a8b8ff3e56e018bc0de3;p=thirdparty%2Ffastapi%2Ffastapi.git

:lock: Check both username and password in security tutorial (#865)
---

diff --git a/docs/src/security/tutorial007.py b/docs/src/security/tutorial007.py
index ce268433cf..2c323fd48d 100644
--- a/docs/src/security/tutorial007.py
+++ b/docs/src/security/tutorial007.py
@@ -12,7 +12,7 @@ security = HTTPBasic()
 def get_current_username(credentials: HTTPBasicCredentials = Depends(security)):
     correct_username = secrets.compare_digest(credentials.username, "stanleyjobson")
     correct_password = secrets.compare_digest(credentials.password, "swordfish")
-    if not correct_username and correct_password:
+    if not (correct_username and correct_password):
         raise HTTPException(
             status_code=HTTP_401_UNAUTHORIZED,
             detail="Incorrect email or password",