Raise 404 when program or course key is wrong (#128)

* Raise 404 when program or course key is wrong

* Exclude enrolled_students from Program admin view

Author: DaveyJH

lms/djangoapps/ci_program/admin.py

@@ -8,7 +8,7 @@ class ProgramAdmin(admin.ModelAdmin):
         "status",
         "name",
     )
-
+    exclude = ["enrolled_students"]
     ordering = ("-status",)
 
 admin.site.register(ProgramCourseCode)

lms/djangoapps/ci_program/views.py

@@ -7,6 +7,7 @@
 from edxmako.shortcuts import render_to_response
 from ci_program.models import Program
 from openedx.core.djangoapps.bookmarks.models import Bookmark
+from django.http import Http404
 
 
 @login_required
@@ -17,7 +18,10 @@ def show_programs(request, program_name):
     student_email = request.user.email
     cache_key = '%s_program_name' % student_email
 
-    program = Program.objects.get(marketing_slug=program_name)
+    try:
+        program = Program.objects.get(marketing_slug=program_name)
+    except Program.DoesNotExist:
+        raise Http404
     if request.user not in program.enrolled_students.all():
         return redirect(reverse('dashboard'))
 

lms/djangoapps/courseware/views/index.py

@@ -165,6 +165,10 @@ def _redirect_if_course_updated():
                 except Http404 as nfe:
                     _redirect_if_course_updated()
 
+                # handle url errors in course key
+                if not self.course:
+                    raise Http404
+
                 self.course_overview = CourseOverview.get_from_id(self.course.id)
                 self.is_staff = has_access(request.user, 'staff', self.course)