epic/play-with-docker
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Remove sensitive information from LoggedUser endpoint

Browse Source
This commit is contained in:
Marcos Lilljedahl
2017-11-09 19:21:31 -03:00
parent 15a833fcf5
commit e91a1f3e6f
2 changed files with 1 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
handlers/bootstrap.go
View File

@@ -68,7 +68,7 @@ func Register(extend HandlerExtender) {
http.ServeFile(rw, r, "./www/landing.html") http.ServeFile(rw, r, "./www/landing.html")
}).Methods("GET") }).Methods("GET")
corsRouter.HandleFunc("/users/me", LoggedInUser).Methods("GET") corsRouter.HandleFunc("/users/me", GetUser).Methods("GET")
r.HandleFunc("/users/{userId:^(?me)}", GetUser).Methods("GET") r.HandleFunc("/users/{userId:^(?me)}", GetUser).Methods("GET")
r.HandleFunc("/oauth/providers", ListProviders).Methods("GET") r.HandleFunc("/oauth/providers", ListProviders).Methods("GET")
r.HandleFunc("/oauth/providers/{provider}/login", Login).Methods("GET") r.HandleFunc("/oauth/providers/{provider}/login", Login).Methods("GET")

16
handlers/login.go
View File

@@ -17,22 +17,6 @@ import (
"github.com/twinj/uuid" "github.com/twinj/uuid"
) )
func LoggedInUser(rw http.ResponseWriter, req *http.Request) {
cookie, err := ReadCookie(req)
if err != nil {
log.Println("Cannot read cookie")
rw.WriteHeader(http.StatusUnauthorized)
return
}
user, err := core.UserGet(cookie.Id)
if err != nil {
log.Printf("Couldn't get user with id %s. Got: %v\n", cookie.Id, err)
rw.WriteHeader(http.StatusUnauthorized)
return
}
json.NewEncoder(rw).Encode(user)
}
func ListProviders(rw http.ResponseWriter, req *http.Request) { func ListProviders(rw http.ResponseWriter, req *http.Request) {
providers := []string{} providers := []string{}
for name, _ := range config.Providers { for name, _ := range config.Providers {