mirror of
https://github.com/usememos/memos.git
synced 2024-12-25 14:42:55 +08:00
chore: update jwt middleware
This commit is contained in:
parent
b27004daae
commit
49f8cfd5d1
2 changed files with 1 additions and 11 deletions
|
@ -53,12 +53,6 @@ func JWTMiddleware(storeInstance *store.Store, next echo.HandlerFunc, secret str
|
||||||
return func(c echo.Context) error {
|
return func(c echo.Context) error {
|
||||||
ctx := c.Request().Context()
|
ctx := c.Request().Context()
|
||||||
path := c.Request().URL.Path
|
path := c.Request().URL.Path
|
||||||
method := c.Request().Method
|
|
||||||
|
|
||||||
// Skip validation for server status endpoints.
|
|
||||||
if util.HasPrefixes(path, "/api/v1/ping", "/api/v1/status") && method == http.MethodGet {
|
|
||||||
return next(c)
|
|
||||||
}
|
|
||||||
|
|
||||||
accessToken := findAccessToken(c)
|
accessToken := findAccessToken(c)
|
||||||
if accessToken == "" {
|
if accessToken == "" {
|
||||||
|
@ -66,10 +60,6 @@ func JWTMiddleware(storeInstance *store.Store, next echo.HandlerFunc, secret str
|
||||||
if util.HasPrefixes(path, "/o") {
|
if util.HasPrefixes(path, "/o") {
|
||||||
return next(c)
|
return next(c)
|
||||||
}
|
}
|
||||||
// When the request is not authenticated, we allow the user to access the memo endpoints for those public memos.
|
|
||||||
if util.HasPrefixes(path, "/api/v1/idp", "/api/v1/memo", "/api/v1/user") && path != "/api/v1/user" && method == http.MethodGet {
|
|
||||||
return next(c)
|
|
||||||
}
|
|
||||||
return echo.NewHTTPError(http.StatusUnauthorized, "Missing access token")
|
return echo.NewHTTPError(http.StatusUnauthorized, "Missing access token")
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
@ -88,7 +88,7 @@ func NewServer(ctx context.Context, profile *profile.Profile, store *store.Store
|
||||||
// Create and register resource public routes.
|
// Create and register resource public routes.
|
||||||
resource.NewResourceService(s.Profile, s.Store).RegisterRoutes(publicGroup)
|
resource.NewResourceService(s.Profile, s.Store).RegisterRoutes(publicGroup)
|
||||||
|
|
||||||
// Create and register rss public routes.
|
// Create and register RSS routes.
|
||||||
rss.NewRSSService(s.Profile, s.Store).RegisterRoutes(rootGroup)
|
rss.NewRSSService(s.Profile, s.Store).RegisterRoutes(rootGroup)
|
||||||
|
|
||||||
apiV2Service := apiv2.NewAPIV2Service(s.Secret, profile, store, s.Profile.Port+1)
|
apiV2Service := apiv2.NewAPIV2Service(s.Secret, profile, store, s.Profile.Port+1)
|
||||||
|
|
Loading…
Reference in a new issue