Commit aba3e41a authored by Mikaël Salson's avatar Mikaël Salson
Browse files

controllers/file.py: patient_id is given through the request, get it directly

parent 1cab8beb
......@@ -189,8 +189,7 @@ def delete_sequence_file(seq_id):
return error_message('you need admin permission to delete this file')
def delete():
patient_id = db.sequence_file[request.vars["id"]].patient_id
patient_id = request.vars["patient_id"]
delete_results = ('delete_results' in request.vars and request.vars['delete_results'] == 'True')
if auth.can_modify_patient(patient_id):
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment