From 2dca7da7619cb53fcfa517b6d6baa13e418e516a Mon Sep 17 00:00:00 2001
From: Frederic <frederic@lug-saar.de>
Date: Sun, 8 Sep 2013 13:34:28 +0200
Subject: [PATCH] handle MAX_DEBIT exceeding; use a password field in
 UserPinForm

---
 cash/views.py | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/cash/views.py b/cash/views.py
index 617e43a..98e5e2a 100644
--- a/cash/views.py
+++ b/cash/views.py
@@ -48,11 +48,13 @@ def buy(request, product_id, confirm=False):
 	product = get_object_or_404(Product, id=product_id)
 
 	if confirm:
-		request.user.account.buy_product(product, 1)
-
 		context = RequestContext(request)
-		return render_to_response('cash/buy_thanks.html',
-		                          context_instance=context)
+		if request.user.account.buy_product(product, 1):
+			return render_to_response('cash/buy_thanks.html',
+									  context_instance=context)
+		else:
+			return render_to_response('cash/buy_error.html',
+									  context_instance=context)
 	else:
 		context = RequestContext(request, {'product': product})
 		return render_to_response('cash/buy_confirm.html',
@@ -62,8 +64,8 @@ class UserSettingsForm(forms.Form):
 	daily_digest = forms.BooleanField(required=False)
 
 class UserPinForm(forms.Form):
-	pin = forms.CharField(max_length=32)
-	pin_confirm = forms.CharField(max_length=32)
+	pin = forms.CharField(max_length=32, widget=forms.PasswordInput)
+	pin_confirm = forms.CharField(max_length=32, widget=forms.PasswordInput)
 
 	def clean(self):
 		cleaned_data = super(UserPinForm, self).clean()