ClusterCockpit/cc-backend
1
0
Fork 0
mirror of https://github.com/ClusterCockpit/cc-backend synced 2025-10-02 20:54:32 +02:00
Code Issues Packages Releases Activity

Refactor

Browse Source
This commit is contained in:
Jan Eitzinger
2025-09-28 08:24:41 +02:00
parent 647665b6b9
commit d40c54b802
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
internal/auth/auth.go
View File

@@ -230,7 +230,7 @@ func (auth *Authentication) SaveSession(rw http.ResponseWriter, r *http.Request,
if auth.SessionMaxAge != 0 { if auth.SessionMaxAge != 0 {
session.Options.MaxAge = int(auth.SessionMaxAge.Seconds()) session.Options.MaxAge = int(auth.SessionMaxAge.Seconds())
} }
if config.Keys.HttpsCertFile == "" && config.Keys.HttpsKeyFile == "" { if config.Keys.HTTPSCertFile == "" && config.Keys.HTTPSKeyFile == "" {
session.Options.Secure = false session.Options.Secure = false
} }
session.Options.SameSite = http.SameSiteStrictMode session.Options.SameSite = http.SameSiteStrictMode
@@ -538,15 +538,15 @@ func securedCheck(user *schema.User, r *http.Request) error {
} }
// If nothing declared in config: deny all request to this api endpoint // If nothing declared in config: deny all request to this api endpoint
if len(config.Keys.ApiAllowedIPs) == 0 { if len(config.Keys.APIAllowedIPs) == 0 {
return fmt.Errorf("missing configuration key ApiAllowedIPs") return fmt.Errorf("missing configuration key ApiAllowedIPs")
} }
// If wildcard declared in config: Continue // If wildcard declared in config: Continue
if config.Keys.ApiAllowedIPs[0] == "*" { if config.Keys.APIAllowedIPs[0] == "*" {
return nil return nil
} }
// check if IP is allowed // check if IP is allowed
if !util.Contains(config.Keys.ApiAllowedIPs, IPAddress) { if !util.Contains(config.Keys.APIAllowedIPs, IPAddress) {
return fmt.Errorf("unknown ip: %v", IPAddress) return fmt.Errorf("unknown ip: %v", IPAddress)
} }