self-hosted/focalboard
1
0
Fork 0
mirror of https://github.com/mattermost/focalboard.git synced 2025-07-12 23:50:27 +02:00
Code Issues Releases Activity

Allow GetSubTree without auth. WIP

Browse Source
This commit is contained in:
Chen-I Lim
2021-01-12 18:49:08 -08:00
parent 2dab4f56fd
commit 61fb38d418
6 changed files with 62 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
server/api/auth.go
View File

@ -110,6 +110,10 @@ func (a *API) handleRegister(w http.ResponseWriter, r *http.Request) {
}
func (a *API) sessionRequired(handler func(w http.ResponseWriter, r *http.Request)) func(w http.ResponseWriter, r *http.Request) {
return a.attachSession(handler, true)
}
func (a *API) attachSession(handler func(w http.ResponseWriter, r *http.Request), required bool) func(w http.ResponseWriter, r *http.Request) {
return func(w http.ResponseWriter, r *http.Request) {
log.Printf(`Single User: %v`, a.singleUser)
if a.singleUser {
@ -129,7 +133,12 @@ func (a *API) sessionRequired(handler func(w http.ResponseWriter, r *http.Reques
token, _ := auth.ParseAuthTokenFromRequest(r)
session, err := a.app().GetSession(token)
if err != nil {
errorResponse(w, http.StatusUnauthorized, map[string]string{"error": err.Error()})
if required {
errorResponse(w, http.StatusUnauthorized, map[string]string{"error": err.Error()})
return
}
handler(w, r)
return
}
ctx := context.WithValue(r.Context(), "session", session)