Handle missing token in isAdmin() func

Signed-off-by: Vallari Agrawal <[email protected]>

Author: VallariAg

Diff for: src/teuthology_api/services/helpers.py

@@ -107,6 +107,12 @@ async def isAdmin(username, token):
     if not (GH_ORG_TEAM_URL and ADMIN_TEAM):
         log.error("GH_ORG_TEAM_URL or ADMIN_TEAM is not set in .env")
         return False
+    if not (token and username):
+        raise HTTPException(
+            status_code=401,
+            detail="You are probably not logged in (username or token missing)",
+            headers={"WWW-Authenticate": "Bearer"},
+        )
     TEAM_MEMBER_URL = f"{GH_ORG_TEAM_URL}/{ADMIN_TEAM}/memberships/{username}"
     async with httpx.AsyncClient() as client:
         headers = {

Diff for: src/teuthology_api/services/kill.py

@@ -38,7 +38,7 @@ async def run(args, send_logs: bool, token: dict, request: Request):
     if (run_owner.lower() != username.lower()) and (
         run_owner.lower() != f"scheduled_{username.lower()}@teuthology"
     ):
-        isUserAdmin = await isAdmin(username, token["access_token"])
+        isUserAdmin = await isAdmin(username, token.get("access_token"))
         if not isUserAdmin:
             log.error(
                 "%s doesn't have permission to kill a job scheduled by: %s",