FJurmanovic/acc-server-manager
1
0
Fork 0
Code Issues 9 Pull Requests Actions Packages Projects 1 Releases Wiki Activity

generate open token using normal token
All checks were successful
Release and Deploy / build (push) Successful in 3m1s
Details
Release and Deploy / deploy (push) Successful in 23s
Details

Browse Source
This commit is contained in:
Fran Jurmanović
2025-08-17 12:46:37 +02:00
parent 486c972bba
commit edad65d6a9
6 changed files with 19 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
local/middleware/auth.go
View File

@@ -106,6 +106,13 @@ func (m *AuthMiddleware) AuthenticateWithHandler(jwtHandler *jwt.JWTHandler, isO
})
}
if !jwtHandler.IsOpenToken && claims.IsOpenToken {
logging.Error("Authentication failed: attempting to authenticate with open token")
return ctx.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
"error": "Wrong token type used",
})
}
// Additional security: validate user ID format
if claims.UserID == "" || len(claims.UserID) < 10 {
logging.Error("Authentication failed: invalid user ID in token from IP %s", ip)