X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=application%2Fapi%2FApiMiddleware.php;h=9fb883589d43a61aff1003882d0531ac8fda3979;hb=refs%2Fpull%2F1666%2Fhead;hp=da730e0c48e739fbb382e86f86dbb15f4e9287e8;hpb=676571dab927b0fb9b3746c36f0d7540e8dba2b5;p=github%2Fshaarli%2FShaarli.git diff --git a/application/api/ApiMiddleware.php b/application/api/ApiMiddleware.php index da730e0c..9fb88358 100644 --- a/application/api/ApiMiddleware.php +++ b/application/api/ApiMiddleware.php @@ -1,6 +1,8 @@ hasHeader('Authorization') && !isset($_SERVER['REDIRECT_HTTP_AUTHORIZATION'])) { + if ( + !$request->hasHeader('Authorization') + && !isset($this->container->environment['REDIRECT_HTTP_AUTHORIZATION']) + ) { throw new ApiAuthorizationException('JWT token not provided'); } @@ -115,11 +120,11 @@ class ApiMiddleware throw new ApiAuthorizationException('Token secret must be set in Shaarli\'s administration'); } - if (isset($_SERVER['REDIRECT_HTTP_AUTHORIZATION'])) { - $authorization = $_SERVER['REDIRECT_HTTP_AUTHORIZATION']; - } else { + if (isset($this->container->environment['REDIRECT_HTTP_AUTHORIZATION'])) { + $authorization = $this->container->environment['REDIRECT_HTTP_AUTHORIZATION']; + } else { $authorization = $request->getHeaderLine('Authorization'); - } + } if (! preg_match('/^Bearer (.*)/i', $authorization, $matches)) { throw new ApiAuthorizationException('Invalid JWT header'); @@ -141,6 +146,7 @@ class ApiMiddleware $linkDb = new BookmarkFileService( $conf, $this->container->get('history'), + new FlockMutex(fopen(SHAARLI_MUTEX_FILE, 'r'), 2), true ); $this->container['db'] = $linkDb;