diff options
| author |  tobi <31960611+tsmethurst@users.noreply.github.com> | 2021-11-27 14:53:34 +0100 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2021-11-27 14:53:34 +0100 |
| commit | ce22e03f9deaf424aa21c5cc0ef85e58992a7882 (patch) | |
| tree | 48711826e97c1590ae514791f5a6e910b98cfae8 /internal/api/security/security.go | |
| parent | run sqlite tests in parallel (#331) (diff) | |
| download | gotosocial-ce22e03f9deaf424aa21c5cc0ef85e58992a7882.tar.xz | |
Require confirmed email when checking oauth token (#332)
* move token checker to security package
* update tests with new security package
* add oauth token checking to security package
* check if user email confirmed when parsing token
Diffstat (limited to 'internal/api/security/security.go')
| -rw-r--r-- | internal/api/security/security.go | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/internal/api/security/security.go b/internal/api/security/security.go index 5ed677467..0379b2d53 100644 --- a/internal/api/security/security.go +++ b/internal/api/security/security.go @@ -24,6 +24,7 @@ import ( "github.com/superseriousbusiness/gotosocial/internal/api" "github.com/superseriousbusiness/gotosocial/internal/config" "github.com/superseriousbusiness/gotosocial/internal/db" + "github.com/superseriousbusiness/gotosocial/internal/oauth" "github.com/superseriousbusiness/gotosocial/internal/router" ) @@ -33,13 +34,15 @@ const robotsPath = "/robots.txt" type Module struct { config *config.Config db db.DB + server oauth.Server } // New returns a new security module -func New(config *config.Config, db db.DB) api.ClientModule { +func New(config *config.Config, db db.DB, server oauth.Server) api.ClientModule { return &Module{ config: config, db: db, + server: server, } } @@ -49,6 +52,7 @@ func (m *Module) Route(s router.Router) error { s.AttachMiddleware(m.FlocBlock) s.AttachMiddleware(m.ExtraHeaders) s.AttachMiddleware(m.UserAgentBlock) + s.AttachMiddleware(m.TokenCheck) s.AttachHandler(http.MethodGet, robotsPath, m.RobotsGETHandler) return nil } |