auth: Do not allow logged-in users to register again

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

diff --git a/src/web/auth.py b/src/web/auth.py
index afea42886ca7a653724086d6a612c6afcd773971..69a94558a1da8c6c676b559153d13ff521dace5c 100644 (file)
--- a/src/web/auth.py
+++ b/src/web/auth.py
@@ -78,6 +78,10 @@ class LogoutHandler(AuthenticationMixin, base.BaseHandler):
 class RegisterHandler(base.BaseHandler):
        @base.blacklisted
        def get(self):
+               # Redirect logged in users away
+               if self.current_user:
+                       self.redirect("/")
+
                self.render("auth/register.html")
 
        @base.blacklisted