From 51cd4a26bb913d299893ce6da42e6f7ead06f822 Mon Sep 17 00:00:00 2001
From: "Ruben S. Montero" <rubensm@dacya.ucm.es>
Date: Tue, 15 Nov 2011 23:22:32 +0100
Subject: [PATCH] Better check for unauthorized sessions in ozones

---
 src/ozones/Server/ozones-server.rb | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/src/ozones/Server/ozones-server.rb b/src/ozones/Server/ozones-server.rb
index 9315b2cc3d..ef34108ee0 100755
--- a/src/ozones/Server/ozones-server.rb
+++ b/src/ozones/Server/ozones-server.rb
@@ -159,10 +159,13 @@ end
 
 before do
     unless request.path=='/login' || request.path=='/'
-        rc , msg = build_session unless authorized?
 
-        if rc == 401
-           halt 401 
+        unless authorized?
+            rc , msg = build_session
+
+            if rc == 401
+               halt 401 
+            end
         end
 
         @OzonesServer = OzonesServer.new(session[:key])