From ebd604131053b2a623a6216a38c85ca90244d1ec Mon Sep 17 00:00:00 2001
From: mein Name <ich@example.com>
Date: Wed, 12 Mar 2025 14:26:50 -0400
Subject: [PATCH] check account readiness in profile page

---
 common/utils.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/common/utils.py b/common/utils.py
index 729c9c5f..69eb8d00 100644
--- a/common/utils.py
+++ b/common/utils.py
@@ -90,13 +90,17 @@ def profile_identity_required(func):
 
         try:
             target = APIdentity.get_by_handle(user_name, match_linked=True)
+            # this should trigger ObjectDoesNotExist if Takahe identity is not sync-ed
+            blocked = target.restricted
         except ObjectDoesNotExist:
             raise Http404(_("User not found"))
         target_user = target.user
         viewer = None
         if target_user and not target_user.is_active:
             raise Http404(_("User no longer exists"))
-        if request.user.is_authenticated:
+        if blocked:
+            raise PermissionDenied(_("Access denied"))
+        elif request.user.is_authenticated:
             try:
                 viewer = APIdentity.objects.get(user=request.user)
             except APIdentity.DoesNotExist: