From 796a8faf5443a65e538fe3c12fb256e66e4386b5 Mon Sep 17 00:00:00 2001
From: Marcin-Ramotowski <marcin00.mr@gmail.com>
Date: Sat, 15 Mar 2025 19:57:51 +0000
Subject: [PATCH] Added possibility to customize error messages

---
 api/user_views.py | 14 ++++----------
 1 file changed, 4 insertions(+), 10 deletions(-)

diff --git a/api/user_views.py b/api/user_views.py
index dcad3fd..b860576 100644
--- a/api/user_views.py
+++ b/api/user_views.py
@@ -5,23 +5,17 @@ from werkzeug.security import check_password_hash, generate_password_hash
 
 user_bp = Blueprint('user_bp', __name__)
 
-def admin_required(user_id):
+def admin_required(user_id, message='Access denied.'):
     user = User.query.get(user_id)
     if user is None or user.role != "Administrator":
-        abort(403, {'error': f'Access denied.'})
+        abort(403, {'error': message})
 
-def validate_access(owner_id):
+def validate_access(owner_id, message='Access denied.'):
     # Check if user try to access or edit resource that does not belong to them 
     logged_user_id = int(get_jwt_identity())
     logged_user_role = User.query.get(logged_user_id).role
     if logged_user_role != "Administrator" and logged_user_id != owner_id:
-        abort(403, {'error': f'Access denied.'})
-
-@user_bp.errorhandler(403)
-def forbidden_error(error):
-    response = jsonify(error.description)
-    response.status_code = 403
-    return response
+        abort(403, {'error': message})
 
 @user_bp.route('/users', methods=['GET'])
 @jwt_required()