llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-05-24 08:20:31 +08:00
Code Issues Packages Projects Releases Wiki Activity

Remove password in JWT token payload.

Browse Source
This commit is contained in:
Yang Luo 2021-10-03 22:08:40 +08:00
parent 8cb1291f6f
commit 4f2668cd90
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
object/token_jwt.go
View File

@ -31,6 +31,8 @@ func generateJwtToken(application *Application, user *User) (string, error) {
nowTime := time.Now() nowTime := time.Now()
expireTime := nowTime.Add(time.Duration(application.ExpireInHours) * time.Hour) expireTime := nowTime.Add(time.Duration(application.ExpireInHours) * time.Hour)
user.Password = ""
claims := Claims{ claims := Claims{
User: *user, User: *user,
StandardClaims: jwt.StandardClaims{ StandardClaims: jwt.StandardClaims{