Prior commit was incomplete.

author: Mark Sapiro <mark@msapiro.net> 2021-11-23 19:38:19 -0800
committer: Mark Sapiro <mark@msapiro.net> 2021-11-23 19:38:19 -0800
commit: f63f8d81d718d779dd6cdb55c66bf3def0fe9041 (patch)
tree: 71859f2ff1e3f4ccde155ee71964f131e9d5093f /Mailman/Cgi/options.py
parent: 4fe8740ec232a59edd0fde6087bd7b014b17f5ef (diff)
download: mailman2-f63f8d81d718d779dd6cdb55c66bf3def0fe9041.tar.gz
mailman2-f63f8d81d718d779dd6cdb55c66bf3def0fe9041.tar.xz
mailman2-f63f8d81d718d779dd6cdb55c66bf3def0fe9041.zip
1 files changed, 5 insertions, 4 deletions
diff --git a/Mailman/Cgi/options.py b/Mailman/Cgi/options.py
index af6e3add..c5c6425a 100644
--- a/Mailman/Cgi/options.py
+++ b/Mailman/Cgi/options.py
@@ -166,10 +166,11 @@ def main():
         return
     # Sanity check the user, but only give the "no such member" error when
     # using public rosters, otherwise, we'll leak membership information.
-    if not mlist.isMember(user) and mlist.private_roster == 0:
-        doc.addError(_('No such member: %(safeuser)s.'))
-        loginpage(mlist, doc, None, language)
-        print doc.Format()
+    if not mlist.isMember(user):
+        if mlist.private_roster == 0:
+            doc.addError(_('No such member: %(safeuser)s.'))
+            loginpage(mlist, doc, None, language)
+            print doc.Format()
         return
 
     # Avoid cross-site scripting attacks
author	Mark Sapiro <mark@msapiro.net>	2021-11-23 19:38:19 -0800
committer	Mark Sapiro <mark@msapiro.net>	2021-11-23 19:38:19 -0800
commit	f63f8d81d718d779dd6cdb55c66bf3def0fe9041 (patch)
tree	71859f2ff1e3f4ccde155ee71964f131e9d5093f /Mailman/Cgi/options.py
parent	4fe8740ec232a59edd0fde6087bd7b014b17f5ef (diff)
download	mailman2-f63f8d81d718d779dd6cdb55c66bf3def0fe9041.tar.gz mailman2-f63f8d81d718d779dd6cdb55c66bf3def0fe9041.tar.xz mailman2-f63f8d81d718d779dd6cdb55c66bf3def0fe9041.zip