Mirrored_Repos/wabbajack
1
0
Fork 0
mirror of https://github.com/wabbajack-tools/wabbajack.git synced 2024-08-30 18:42:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auth against the correct code this time

Browse Source
This commit is contained in:
Halgari 2023-02-23 22:40:09 -07:00
parent 59126d1f25
commit 18afc46e5e
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
Wabbajack.Server/ApiKeyAuthorizationHandler.cs
View File

@ -86,8 +86,6 @@ public class ApiKeyAuthenticationHandler : AuthenticationHandler<ApiKeyAuthentic
if (authorKey != null) if (authorKey != null)
{ {
if (await _tarLog.Contains(authorKey))
return AuthenticateResult.Fail("Banned author key");
var owner = await _authorKeys.AuthorForKey(authorKey); var owner = await _authorKeys.AuthorForKey(authorKey);
if (owner == null) if (owner == null)
@ -100,6 +98,9 @@ public class ApiKeyAuthenticationHandler : AuthenticationHandler<ApiKeyAuthentic
owner = "github/" + ghUser.Login; owner = "github/" + ghUser.Login;
} }
if (await _tarLog.Contains(owner))
return AuthenticateResult.Fail("Banned author key");
var claims = new List<Claim> {new(ClaimTypes.Name, owner)}; var claims = new List<Claim> {new(ClaimTypes.Name, owner)};
claims.Add(new Claim(ClaimTypes.Role, "Author")); claims.Add(new Claim(ClaimTypes.Role, "Author"));