From fe70dbc0020211f8a58069ef9f2755ed47058f1d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Michael=20G=C3=B6tz?=
 <michael-guenther.goetz@stud.uni-bamberg.de>
Date: Thu, 2 May 2019 14:00:37 +0200
Subject: [PATCH] Implement better group cross realm protection msg. Close #46

---
 src/account_manager/views/group_views.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/account_manager/views/group_views.py b/src/account_manager/views/group_views.py
index 7359b39..76511bf 100644
--- a/src/account_manager/views/group_views.py
+++ b/src/account_manager/views/group_views.py
@@ -16,7 +16,11 @@ def protect_cross_realm_group_access(view_func):
         group_dn = kwargs.get('group_dn', None)
 
         if realm_id and group_dn and Realm.objects.get(id=realm_id).ldap_base_dn not in group_dn:
-            return HttpResponse("Ressource konnte nicht gefunden werden.", status=404)
+            return render(request, 'permission_denied.jinja2',
+                          {
+                              'extra_errors':
+                                  'Die angefragte Gruppe gehört einem anderen Bereich an. Gruppen können nur von dem Bereich bearbeitet werden, in dem sie erstellt wurden.'},
+                          status=404)
         return view_func(request, *args, **kwargs)
 
     return decorator