From b5ba3014f21e81bcba081f4fd8fd15e51ab88402 Mon Sep 17 00:00:00 2001
From: Sebastian Serfling <sebastian.serfling@stines.de>
Date: Tue, 17 Oct 2023 16:35:25 +0200
Subject: [PATCH] Remove API key From Console

---
 main.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/main.py b/main.py
index 881b883..2084d15 100644
--- a/main.py
+++ b/main.py
@@ -257,12 +257,12 @@ async def get_user_id(get: CL.CL_GET_USER_ID,api_key: APIKey = Depends(auth.get_
 
 @app.post("/report/addusertogroup")
 async def get_addusertogroup(get: CL.CL_ADD_USER_TO_GROUP,api_key: APIKey = Depends(auth.get_api_key)):
-    userid = database(f"SELECT ID FROM `{get.dbname}`.`Active-Directory-User` WHERE SamAccountName = '{get.member}' ORDER BY ID DESC LIMIT 1","","")
-    groupid = database(f"SELECT ID FROM `{get.dbname}`.Gruppen WHERE Name = '{get.groupname}'","","")
+    userid = database(f"SELECT ID FROM `{get.dbname}`.`Active-Directory-User` WHERE SamAccountName = '{get.member}' ORDER BY ID DESC LIMIT 1","","")[0][0]
+    groupid = database(f"SELECT ID FROM `{get.dbname}`.Gruppen WHERE Name = '{get.groupname}'","","")[0][0]
     if not groupid:
         database(f"INSERT INTO Gruppen (Name) VALUES ('{get.groupname}')","","")
-        groupid = database(f"SELECT ID FROM `{get.dbname}`.Gruppen WHERE Name = '{get.groupname}'", "", "")
-    check = database(f"SELECT * FROM `{get.dbname}`.GruppenToUser WHERE UserID = {userid} AND GruppenID = {groupid}","","")
+        groupid = database(f"SELECT ID FROM `{get.dbname}`.Gruppen WHERE Name = '{get.groupname}'", "", "")[0][0]
+    check = database(f"SELECT * FROM `{get.dbname}`.GruppenToUser WHERE UserID = {userid} AND GruppenID = {groupid}","","")[0][0]
     if not check:
         database(f"INSERT INTO `{get.dbname}`.GruppenToUser (UserID,GruppenID) VALUES ({userid},{groupid})","","")
     else: