Fixed user redirect middleware

cntmanage/cntmanage/settings.py

@@ -53,7 +53,6 @@ IMPORT_EXPORT_SKIP_ADMIN_LOG = True
 IMPORT_FORMATS = [CSV]
 
 MIDDLEWARE = [
-    'flightslot.middleware.RedirectNonSuperuserFromAdminMiddleware', # custom middleware to show "user" page to non superuser
     'django.middleware.security.SecurityMiddleware',
     'django.contrib.sessions.middleware.SessionMiddleware',
     'django.middleware.common.CommonMiddleware',
@@ -61,6 +60,7 @@ MIDDLEWARE = [
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
+    'flightslot.middleware.RedirectNonSuperuserFromAdminMiddleware', # custom middleware to show "user" page to non superuser
 ]
 
 ROOT_URLCONF = 'cntmanage.urls'

cntmanage/cntmanage/settings_prod.py

@@ -57,7 +57,6 @@ IMPORT_EXPORT_SKIP_ADMIN_LOG = True
 IMPORT_FORMATS = [CSV]
 
 MIDDLEWARE = [
-    'flightslot.middleware.RedirectNonSuperuserFromAdminMiddleware', # custom middleware to show "user" page to non superuser
     'django.middleware.security.SecurityMiddleware',
     'whitenoise.middleware.WhiteNoiseMiddleware',
     'django.contrib.sessions.middleware.SessionMiddleware',
@@ -66,6 +65,7 @@ MIDDLEWARE = [
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
+    'flightslot.middleware.RedirectNonSuperuserFromAdminMiddleware', # custom middleware to show "user" page to non superuser
 ]
 
 ROOT_URLCONF = 'cntmanage.urls'

cntmanage/flightslot/middleware.py

@@ -8,7 +8,7 @@ class RedirectNonSuperuserFromAdminMiddleware:
 
     def __call__(self, request: HttpRequest):
         # Se l'utente è loggato, non è superuser e prova ad andare in /admin/...
-        if hasattr(request, "user") and hasattr(request.user, 'student'):
+        if hasattr(request, "user") and not request.user.is_superuser:
             if "/admin/" in request.path:
                 return redirect("/user/")  # redirect automatico
         return self.get_response(request)