monkeytypegame/monkeytype
1
1
Fork 0
mirror of https://github.com/monkeytypegame/monkeytype.git synced 2025-10-26 08:47:36 +08:00
Code Issues Projects Releases Packages Wiki Activity

refactor: allow apekeys if endpoint is public

Browse source 
This partially reverts 923f69ab55.
This is because we sometimes still need the decoded token in public endpoints.

If an endpoint doesnt accept ape keys BUT its public, we dont return a 401 error.
This commit is contained in:
Miodec 2023-10-25 16:00:03 +01:00
parent 3f855ae3d1
commit e3ce7b2458
1 changed files with 8 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
backend/src/middlewares/auth.ts
View file

@ -45,18 +45,18 @@ function authenticateRequest(authOptions = DEFAULT_OPTIONS): Handler {
const { authorization: authHeader } = req.headers;
try {
if (options.isPublic === true) {
token = {
type: "None",
uid: "",
email: "",
};
} else if (authHeader) {
if (authHeader) {
token = await authenticateWithAuthHeader(
authHeader,
req.ctx.configuration,
options
);
} else if (options.isPublic === true) {
token = {
type: "None",
uid: "",
email: "",
};
} else if (process.env.MODE === "dev") {
token = authenticateWithBody(req.body);
} else {
@ -216,7 +216,7 @@ async function authenticateWithApeKey(
throw new MonkeyError(503, "ApeKeys are not being accepted at this time");
}
if (!options.acceptApeKeys) {
if (!options.acceptApeKeys && !options.isPublic) {
throw new MonkeyError(401, "This endpoint does not accept ApeKeys");
}