X-Git-Url: https://git.stderr.nl/gitweb?a=blobdiff_plain;f=influences%2Fviews.py;fp=influences%2Fviews.py;h=3ff3ca83f8e5e2aece4d80fbabd19d6d9df9e2e7;hb=1d73f73f278e35bc1717376a7796ca1643d642b2;hp=ba8e280aaa0a2bf177fe4af2e062d17e65f98d5a;hpb=d482d83e3ebc9c02d6942aac09f7c697aae7ad07;p=matthijs%2Fprojects%2Fxerxes.git

diff --git a/influences/views.py b/influences/views.py
index ba8e280..3ff3ca8 100644
--- a/influences/views.py
+++ b/influences/views.py
@@ -74,11 +74,15 @@ def character_list(request):
 @login_required
 def character_detail(request, object_id):
     o = Character.objects.get(pk=object_id)
+    if (o.player != request.user):
+        return HttpResponseForbidden("Forbidden -- Trying to view somebody else's character")
     return render_to_response('influences/character_detail.html', {'object' : o}, RequestContext(request))
 
 @login_required
 def influence_detail(request, object_id):
     o = Influence.objects.get(pk=object_id)
+    if (o.character.player != request.user):
+        return HttpResponseForbidden("Forbidden -- Trying to view influences of somebody else's character")
     return render_to_response('influences/influence_detail.html', {'object' : o}, RequestContext(request))
 
 # vim: set sts=4 sw=4 expandtab: