lfk/backend
2
0
Fork 0
Code Issues 1 Pull Requests Actions Projects Releases 40 Activity

send empty array for user permissions if null

Browse Source 
ref #12
This commit is contained in:
Philipp Dormann 2020-12-09 18:46:09 +01:00
parent 2d603a1467
commit 02236caa41
2 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
src/models/actions/CreateAuth.ts
View File

@ -35,6 +35,7 @@ export class CreateAuth {
const found_user = found_users[0] const found_user = found_users[0]
if (await argon2.verify(found_user.password, this.password + found_user.uuid)) { if (await argon2.verify(found_user.password, this.password + found_user.uuid)) {
const timestamp_accesstoken_expiry = Math.floor(Date.now() / 1000) + 5 * 60 const timestamp_accesstoken_expiry = Math.floor(Date.now() / 1000) + 5 * 60
found_user.permissions = found_user.permissions || []
delete found_user.password; delete found_user.password;
newAuth.access_token = jsonwebtoken.sign({ newAuth.access_token = jsonwebtoken.sign({
userdetails: found_user, userdetails: found_user,

1
src/models/actions/RefreshAuth.ts
View File

@ -28,6 +28,7 @@ export class RefreshAuth {
if (found_user.refreshTokenCount !== decoded["refreshtokencount"]) { if (found_user.refreshTokenCount !== decoded["refreshtokencount"]) {
throw new RefreshTokenCountInvalidError() throw new RefreshTokenCountInvalidError()
} }
found_user.permissions = found_user.permissions || []
delete found_user.password; delete found_user.password;
const timestamp_accesstoken_expiry = Math.floor(Date.now() / 1000) + 5 * 60 const timestamp_accesstoken_expiry = Math.floor(Date.now() / 1000) + 5 * 60
delete found_user.password; delete found_user.password;