From df9913b57399c29d60f19dac38b0c0c401d6c657 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Felix=20D=C3=B6rre?= <felix@dogcraft.de>
Date: Mon, 2 Nov 2015 09:13:06 +0100
Subject: [PATCH] fix: verify there is a user using the API

---
 src/org/cacert/gigi/api/GigiAPI.java | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/org/cacert/gigi/api/GigiAPI.java b/src/org/cacert/gigi/api/GigiAPI.java
index a5acbe56..d511d315 100644
--- a/src/org/cacert/gigi/api/GigiAPI.java
+++ b/src/org/cacert/gigi/api/GigiAPI.java
@@ -50,6 +50,10 @@ public class GigiAPI extends HttpServlet {
         }
         String serial = LoginPage.extractSerialFormCert(cert);
         User u = LoginPage.fetchUserBySerial(serial);
+        if (u == null) {
+            resp.sendError(403, "Error, cert authing required.");
+            return;
+        }
 
         if (pi.equals("/account/certs/new")) {
 
-- 
2.39.2