From d521c9dfc8d2e65a3149905dc01e66d6c834433c Mon Sep 17 00:00:00 2001
From: Michael Tremer <michael.tremer@ipfire.org>
Date: Tue, 7 May 2019 16:06:46 +0100
Subject: [PATCH] auth: Do not allow logged-in users to register again

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
---
 src/web/auth.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/web/auth.py b/src/web/auth.py
index afea4288..69a94558 100644
--- a/src/web/auth.py
+++ b/src/web/auth.py
@@ -78,6 +78,10 @@ class LogoutHandler(AuthenticationMixin, base.BaseHandler):
 class RegisterHandler(base.BaseHandler):
 	@base.blacklisted
 	def get(self):
+		# Redirect logged in users away
+		if self.current_user:
+			self.redirect("/")
+
 		self.render("auth/register.html")
 
 	@base.blacklisted
-- 
2.39.5