Check follow constraints when getting a video

author: Chocobozzz <me@florianbigard.com> 2018-11-16 15:02:48 +0100
committer: Chocobozzz <me@florianbigard.com> 2018-11-16 15:49:16 +0100
commit: 8d4273463fb19d503b1aa0a32dc289f292ed614e (patch)
tree: f422773ecba3405bb5808bed8e25b62ac6b7ea08 /server/middlewares/oauth.ts
parent: 5776f78e3b3f3a371ec30c7fcb11e7ca17f2f65e (diff)
download: PeerTube-8d4273463fb19d503b1aa0a32dc289f292ed614e.tar.gz
PeerTube-8d4273463fb19d503b1aa0a32dc289f292ed614e.tar.zst
PeerTube-8d4273463fb19d503b1aa0a32dc289f292ed614e.zip
1 files changed, 16 insertions, 0 deletions
diff --git a/server/middlewares/oauth.ts b/server/middlewares/oauth.ts
index 5233b66bd..8c1df2c3e 100644
--- a/server/middlewares/oauth.ts
+++ b/server/middlewares/oauth.ts
@@ -28,9 +28,24 @@ function authenticate (req: express.Request, res: express.Response, next: expres
  })
 }
+function authenticatePromiseIfNeeded (req: express.Request, res: express.Response) {
+  return new Promise(resolve => {
+    // Already authenticated? (or tried to)
+    if (res.locals.oauth && res.locals.oauth.token.User) return resolve()
+    if (res.locals.authenticated === false) return res.sendStatus(401)
+    authenticate(req, res, () => {
+      return resolve()
+    })
+  })
+}
 function optionalAuthenticate (req: express.Request, res: express.Response, next: express.NextFunction) {
  if (req.header('authorization')) return authenticate(req, res, next)
+  res.locals.authenticated = false
  return next()
 }
@@ -53,6 +68,7 @@ function token (req: express.Request, res: express.Response, next: express.NextF
 export {
  authenticate,
+  authenticatePromiseIfNeeded,
  optionalAuthenticate,
  token
 }
author	Chocobozzz <me@florianbigard.com>	2018-11-16 15:02:48 +0100
committer	Chocobozzz <me@florianbigard.com>	2018-11-16 15:49:16 +0100
commit	8d4273463fb19d503b1aa0a32dc289f292ed614e (patch)
tree	f422773ecba3405bb5808bed8e25b62ac6b7ea08 /server/middlewares/oauth.ts
parent	5776f78e3b3f3a371ec30c7fcb11e7ca17f2f65e (diff)
download	PeerTube-8d4273463fb19d503b1aa0a32dc289f292ed614e.tar.gz PeerTube-8d4273463fb19d503b1aa0a32dc289f292ed614e.tar.zst PeerTube-8d4273463fb19d503b1aa0a32dc289f292ed614e.zip

diff --git a/server/middlewares/oauth.ts b/server/middlewares/oauth.ts index 5233b66bd..8c1df2c3e 100644 --- a/server/middlewares/oauth.ts +++ b/server/middlewares/oauth.ts
@@ -28,9 +28,24 @@ function authenticate (req: express.Request, res: express.Response, next: expres
28	})	28	})
29	}	29	}
30		30
		31	function authenticatePromiseIfNeeded (req: express.Request, res: express.Response) {
		32	return new Promise(resolve => {
		33	// Already authenticated? (or tried to)
		34	if (res.locals.oauth && res.locals.oauth.token.User) return resolve()
		35
		36	if (res.locals.authenticated === false) return res.sendStatus(401)
		37
		38	authenticate(req, res, () => {
		39	return resolve()
		40	})
		41	})
		42	}
		43
31	function optionalAuthenticate (req: express.Request, res: express.Response, next: express.NextFunction) {	44	function optionalAuthenticate (req: express.Request, res: express.Response, next: express.NextFunction) {
32	if (req.header('authorization')) return authenticate(req, res, next)	45	if (req.header('authorization')) return authenticate(req, res, next)
33		46
		47	res.locals.authenticated = false
		48
34	return next()	49	return next()
35	}	50	}
36		51
@@ -53,6 +68,7 @@ function token (req: express.Request, res: express.Response, next: express.NextF
53		68
54	export {	69	export {
55	authenticate,	70	authenticate,
		71	authenticatePromiseIfNeeded,
56	optionalAuthenticate,	72	optionalAuthenticate,
57	token	73	token
58	}	74	}