llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-07-08 09:01:00 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix: repair the problem that AutoSigninFilter middleware doesn't recognize the access_token request parameter (#569)

Browse Source 
AutoSigninFilter method only checks for `accessToken` request parameters or `Authorization` request header, doesn't recognize `access_token` request parameters, now added, use `utils.GetMaxLenStr()` method to get the maximum length characters
This commit is contained in:
Ghost Lee
2022-03-15 12:52:44 +08:00
committed by GitHub
parent 93a76de044
commit 377e200837
1 changed files with 2 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
routers/auto_signin_filter.go
View File

@ -29,10 +29,8 @@ func AutoSigninFilter(ctx *context.Context) {
// GET parameter like "/page?access_token=123" or // GET parameter like "/page?access_token=123" or
// HTTP Bearer token like "Authorization: Bearer 123" // HTTP Bearer token like "Authorization: Bearer 123"
accessToken := ctx.Input.Query("accessToken") accessToken := util.GetMaxLenStr(ctx.Input.Query("accessToken"), ctx.Input.Query("access_token"), parseBearerToken(ctx))
if accessToken == "" {
accessToken = parseBearerToken(ctx)
}
if accessToken != "" { if accessToken != "" {
token := object.GetTokenByAccessToken(accessToken) token := object.GetTokenByAccessToken(accessToken)
if token == nil { if token == nil {