From d061ad7d565a17aae32010f230294fdf4134d999 Mon Sep 17 00:00:00 2001 From: Son NK Date: Mon, 18 Nov 2019 22:26:32 +0100 Subject: [PATCH] make sure user cannot register with SL email --- app/auth/views/register.py | 12 ++++++++++-- 1 file changed, 10 insertions(+), 2 deletions(-) diff --git a/app/auth/views/register.py b/app/auth/views/register.py index 30abe103..b70038ca 100644 --- a/app/auth/views/register.py +++ b/app/auth/views/register.py @@ -5,7 +5,7 @@ from wtforms import StringField, validators from app import email_utils from app.auth.base import auth_bp -from app.config import URL +from app.config import URL, EMAIL_DOMAIN from app.email_utils import notify_admin from app.extensions import db from app.log import LOG @@ -32,7 +32,15 @@ def register(): next_url = request.args.get("next") if form.validate_on_submit(): - user = User.filter_by(email=form.email.data).first() + email = form.email.data + + if email.endswith(EMAIL_DOMAIN): + flash( + "You cannot use alias as your personal inbox. Nice try though 😉", + "error", + ) + + user = User.filter_by(email=email).first() if user: flash(f"Email {form.email.data} already exists", "warning")