LumeWeb
/
portal
1
0
Fork 0
Code Issues 5 Pull Requests Packages Projects Releases Wiki Activity

refactor: add option to allow jwt to be bypassed if there is no token

This commit is contained in:
Derrick Hammer 2024-03-13 14:00:19 -04:00
parent ca12b99438
commit bf8d909a3c
Signed by: pcfreak30
GPG Key ID: C997C339BE476FF2
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
api/middleware/middleware.go
View File

@ -97,6 +97,7 @@ type AuthMiddlewareOptions struct {
Purpose account.JWTPurpose
AuthContextKey string
Config *config.Manager
EmptyAllowed bool
}
func AuthMiddleware(options AuthMiddlewareOptions) func(http.Handler) http.Handler {
@ -114,9 +115,13 @@ func AuthMiddleware(options AuthMiddlewareOptions) func(http.Handler) http.Handl
authToken := options.FindToken(r)
if authToken == "" {
if !options.EmptyAllowed {
http.Error(w, "Invalid JWT", http.StatusUnauthorized)
return
}
next.ServeHTTP(w, r)
return
}
claim, err := account.JWTVerifyToken(authToken, domain, options.Identity, func(claim *jwt.RegisteredClaims) error {
aud, _ := claim.GetAudience()