From 39d49c1d944bccaeeafb6ecf6c41fa9e56b876db Mon Sep 17 00:00:00 2001
From: Kristijan Mitrovic <kmitrovic@itekako.com>
Date: Wed, 15 Apr 2020 11:11:38 +0200
Subject: [PATCH] Add early exit if account is deleted in login method

---
 .../src/main/java/bubble/resources/account/AuthResource.java    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bubble-server/src/main/java/bubble/resources/account/AuthResource.java b/bubble-server/src/main/java/bubble/resources/account/AuthResource.java
index e8154b12..3e32f781 100644
--- a/bubble-server/src/main/java/bubble/resources/account/AuthResource.java
+++ b/bubble-server/src/main/java/bubble/resources/account/AuthResource.java
@@ -306,7 +306,7 @@ public class AuthResource {
         if (!request.hasName()) return invalid("err.name.required", "name is required");
         if (!request.hasPassword()) return invalid("err.password.required", "password is required");
         final Account account = accountDAO.findByName(request.getName());
-        if (account == null) return notFound(request.getName());
+        if (account == null || account.deleted()) return notFound(request.getName());
         if (!account.getHashedPassword().isCorrectPassword(request.getPassword())) {
             return notFound(request.getName());
         }