github/hedgedoc
1
0
Fork 0
mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-10-18 21:30:15 -04:00
Code Issues Projects Releases Packages Wiki Activity

auth: hash auth token

Browse source 
Since the auth token will be stored in hashed form in the db, we need to hash each provided auth token in order to search in the db for them.

Signed-off-by: Philip Molares <philip.molares@udo.edu>
This commit is contained in:
Philip Molares 2021-01-17 14:38:05 +01:00 committed by David Mehren
parent 667cf7e915
commit e5545043be
No known key found for this signature in database
GPG key ID: 185982BA4C42B7C3
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
src/users/users.service.ts
View file

@ -78,8 +78,9 @@ export class UsersService {
}
async getUserByAuthToken(token: string): Promise<User> {
const hash = this.hashPassword(token);
const accessToken = await this.authTokenRepository.findOne({
where: { accessToken: token },
where: { accessToken: hash },
});
if (accessToken === undefined) {
throw new NotInDBError(`AuthToken '${token}' not found`);