github/hedgedoc
1
0
Fork 0
mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-10-19 22:00:15 -04:00
Code Issues Projects Releases Packages Wiki Activity

auth: hash auth token

Browse source 
Since the auth token will be stored in hashed form in the db, we need to hash each provided auth token in order to search in the db for them.

Signed-off-by: Philip Molares <philip.molares@udo.edu>
This commit is contained in:
Philip Molares 2021-01-17 14:38:05 +01:00
parent 15ca030b67
commit 37a9f6526b
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
src/users/users.service.ts
View file

@ -78,8 +78,9 @@ export class UsersService {
}
async getUserByAuthToken(token: string): Promise<User> {
const hash = this.hashPassword(token);
const accessToken = await this.authTokenRepository.findOne({
where: { accessToken: token },
where: { accessToken: hash },
});
if (accessToken === undefined) {
throw new NotInDBError(`AuthToken '${token}' not found`);