EmailAuthBackend: Convert a return to assert for a now-impossible case.

2025-11-19 22:19:48 +00:00 · 2017-11-21 12:32:42 -08:00
parent 1b95b098dd
commit 53224a16a9
1 changed files with 4 additions and 4 deletions
--- a/zproject/backends.py
+++ b/zproject/backends.py
@@ -339,10 +339,10 @@ class EmailAuthBackend(ZulipAuthMixin):
                     return_data: Optional[Dict[str, Any]]=None) -> Optional[UserProfile]:
        """ Authenticate a user based on email address as the user name. """
        if username is None or password is None:
-            # Return immediately.  Otherwise we will look for a SQL row with
-            # NULL username.  While that's probably harmless, it's needless
-            # exposure.
-            return None
+            # Because of how we structure our auth calls to always
+            # specify which backend to use when not using
+            # EmailAuthBackend, username and password should always be set.
+            raise AssertionError("Invalid call to authenticate for EmailAuthBackend")

        user_profile = common_get_active_user_by_email(username, return_data=return_data)
        if user_profile is None: