Marbes/Luncher
5
2
Fork 0
Code Issues 22 Pull Requests Packages Projects Releases Wiki Activity

Dekódování jména uživatele z trusted headers

Browse Source
This commit is contained in:
Martin Berka
2023-08-08 20:04:12 +02:00
parent f008d364c5
commit fd2e460a82
3 changed files with 22 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
server/src/index.ts
View File

@@ -61,8 +61,9 @@ app.get("/api/whoami", (req, res) => {
app.post("/api/login", (req, res) => {
// Autentizace pomocí trusted headers
const remoteUser = req.header('remote-user');
if (remoteUser && remoteUser.length > 0) {
res.status(200).json(generateToken(remoteUser, true));
const remoteName = req.header('remote-name');
if (remoteUser && remoteUser.length > 0 && remoteName && remoteName.length > 0) {
res.status(200).json(generateToken(Buffer.from(remoteName, 'latin1').toString(), true));
return;
}
// Klasická autentizace loginem
@@ -91,8 +92,12 @@ app.get("/api/qr", (req, res) => {
/** Middleware ověřující JWT token */
app.use((req, res, next) => {
if (req.header('remote-user')) {
console.log("Tvuj username: %s.", req.header('remote-user'));
const userHeader = req.header('remote-user');
const nameHeader = req.header('remote-name');
const emailHeader = req.header('remote-email');
if (userHeader !== undefined && nameHeader !== undefined) {
const remoteName = Buffer.from(nameHeader, 'latin1').toString();
console.log("Tvuj username, name a email: %s, %s, %s.", userHeader, remoteName, emailHeader);
}
if (!req.headers.authorization) {
return res.status(401).json({ error: 'Nebyl předán autentizační token' });