[#923] Merge remote-tracking branch 'remotes/upstream/develop' into twitter_oauth

# Conflicts: # docs/config.md # test/support/factory.ex
2019-04-08 12:20:26 +03:00 · 2019-04-08 12:20:26 +03:00 · bffddf5e31
commit bffddf5e31
parent e3328bc138 b177e1e7f3
32 changed files with 1119 additions and 39 deletions
--- a/lib/pleroma/web/oauth/oauth_controller.ex
+++ b/lib/pleroma/web/oauth/oauth_controller.ex
@ -154,6 +154,7 @@ defmodule Pleroma.Web.OAuth.OAuthController do
    with {_, {:ok, %User{} = user}} <- {:get_user, Authenticator.get_user(conn, params)},
         %App{} = app <- get_app_from_request(conn, params),
         {:auth_active, true} <- {:auth_active, User.auth_active?(user)},
+         {:user_active, true} <- {:user_active, !user.info.deactivated},
         scopes <- oauth_scopes(params, app.scopes),
         [] <- scopes -- app.scopes,
         true <- Enum.any?(scopes),
@ -177,6 +178,11 @@ defmodule Pleroma.Web.OAuth.OAuthController do
        |> put_status(:forbidden)
        |> json(%{error: "Your login is missing a confirmed e-mail address"})

+      {:user_active, false} ->
+        conn
+        |> put_status(:forbidden)
+        |> json(%{error: "Your account is currently disabled"})
+
      _error ->
        put_status(conn, 400)
        |> json(%{error: "Invalid credentials"})