Use req.user to check auth instead of req.is_auth

Guarantee req.oauth in APIRoute middleware
2020-10-18 18:35:55 -05:00 · 2020-10-18 17:19:26 -05:00
1 changed files with 2 additions and 1 deletions
--- a/app/routing/middleware/auth/APIRoute.middleware.js
+++ b/app/routing/middleware/auth/APIRoute.middleware.js
@@ -7,9 +7,10 @@ class APIRouteMiddleware extends Middleware {

    async test(req, res, next, { allow_token = true, allow_user = true }) {
        // First, check if there is a user in the session.
-        if ( allow_user && req.is_auth ) {
+        if ( allow_user && req.user ) {
            return next()
        } else if ( allow_token ) {
+            if ( !req.oauth ) req.oauth = {}
            return req.app.oauth2.authorise()(req, res, async e => {
                if ( e ) return next(e)
                // Look up the OAuth2 client an inject it into the route
Author	SHA1	Message	Date
garrettmills	fd06e17d7d	Use req.user to check auth instead of req.is_auth All checks were successful continuous-integration/drone/push Build is passing Details continuous-integration/drone/tag Build is passing Details	2020-10-18 18:35:55 -05:00
garrettmills	efdea10b14	Guarantee req.oauth in APIRoute middleware All checks were successful continuous-integration/drone/push Build is passing Details continuous-integration/drone/tag Build is passing Details	2020-10-18 17:19:26 -05:00