MirrorHub/bitwarden_rs
0
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden synced 2024-11-11 20:42:50 +01:00
Code Issues Releases Wiki Activity

Merge e7314dd96a into 0fe93edea6

Browse source
This commit is contained in:
FDHoho007 2024-04-28 00:08:22 +02:00 committed by GitHub
commit 5a1927ee7a
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 2 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
src/api/core/public.rs
View file

@ -216,12 +216,8 @@ impl<'r> FromRequest<'r> for PublicToken {
if time_now > claims.exp { if time_now > claims.exp {
err_handler!("Token expired"); err_handler!("Token expired");
} }
// Check if claims.iss is host|claims.scope[0] // Check if claims.iss is domain|claims.scope[0]
let host = match auth::Host::from_request(request).await { let complete_host = format!("{}|{}", CONFIG.domain_origin(), claims.scope[0]);
Outcome::Success(host) => host,
_ => err_handler!("Error getting Host"),
};
let complete_host = format!("{}|{}", host.host, claims.scope[0]);
if complete_host != claims.iss { if complete_host != claims.iss {
err_handler!("Token not issued by this server"); err_handler!("Token not issued by this server");
} }