From 490eb8e14cc44d592058dd81bb0a7e9d64c68379 Mon Sep 17 00:00:00 2001
From: Mo8it <mo8it@proton.me>
Date: Mon, 29 Nov 2021 20:58:14 +0100
Subject: [PATCH] Prevent admin lockout

---
 advlabdb/adminModelViews.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/advlabdb/adminModelViews.py b/advlabdb/adminModelViews.py
index 7c898e4..2d9c01b 100644
--- a/advlabdb/adminModelViews.py
+++ b/advlabdb/adminModelViews.py
@@ -169,6 +169,8 @@ class UserView(SecureAdminModelView):
         if not is_created:
             if model == current_user and not form.active.data:
                 raise ModelViewException("Tried to deactiavte yourself as user!")
+            if not model.has_role("admin"):
+                raise ModelViewException("Tried to remove your admin role!")
 
             if hasattr(form, "generate_new_password") and form.generate_new_password.data:
                 password = randomPassword()