dnitza/adamantium
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Don't alloq multiple auth methods

Browse Source
This commit is contained in:
Daniel Nitsikopoulos
2023-02-18 22:42:30 +11:00
parent ca4fb14aea
commit 6ad4f75525
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
app/action.rb
View File

@@ -23,6 +23,9 @@ module Adamantium
end end
# Pull out and verify the authorization header or access_token # Pull out and verify the authorization header or access_token
halt 400 if req.env["HTTP_AUTHORIZATION"] && req.params["access_token"]
if req.env["HTTP_AUTHORIZATION"] if req.env["HTTP_AUTHORIZATION"]
header = req.env["HTTP_AUTHORIZATION"].match(/Bearer (.*)$/) header = req.env["HTTP_AUTHORIZATION"].match(/Bearer (.*)$/)
access_token = header[1] unless header.nil? access_token = header[1] unless header.nil?