Skip to content

Commit 7c48085

Browse files
zeripathzeripath
authored
Remove check on username if AccessToken authentication (#11015)
Signed-off-by: Andrew Thornton <art27@cantab.net>
1 parent f7ecc2b commit 7c48085

File tree

2 files changed

+10
-35
lines changed

2 files changed

+10
-35
lines changed

modules/auth/sso/basic.go

Lines changed: 5 additions & 15 deletions
Original file line numberDiff line numberDiff line change
@@ -85,22 +85,12 @@ func (b *Basic) VerifyAuthData(ctx *macaron.Context, sess session.Store) *models
8585
}
8686
token, err := models.GetAccessTokenBySHA(authToken)
8787
if err == nil {
88-
if isUsernameToken {
89-
u, err = models.GetUserByID(token.UID)
90-
if err != nil {
91-
log.Error("GetUserByID: %v", err)
92-
return nil
93-
}
94-
} else {
95-
u, err = models.GetUserByName(uname)
96-
if err != nil {
97-
log.Error("GetUserByID: %v", err)
98-
return nil
99-
}
100-
if u.ID != token.UID {
101-
return nil
102-
}
88+
u, err = models.GetUserByID(token.UID)
89+
if err != nil {
90+
log.Error("GetUserByID: %v", err)
91+
return nil
10392
}
93+
10494
token.UpdatedUnix = timeutil.TimeStampNow()
10595
if err = models.UpdateAccessToken(token); err != nil {
10696
log.Error("UpdateAccessToken: %v", err)

routers/repo/http.go

Lines changed: 5 additions & 20 deletions
Original file line numberDiff line numberDiff line change
@@ -188,27 +188,12 @@ func HTTP(ctx *context.Context) {
188188
// Assume password is a token.
189189
token, err := models.GetAccessTokenBySHA(authToken)
190190
if err == nil {
191-
if isUsernameToken {
192-
authUser, err = models.GetUserByID(token.UID)
193-
if err != nil {
194-
ctx.ServerError("GetUserByID", err)
195-
return
196-
}
197-
} else {
198-
authUser, err = models.GetUserByName(authUsername)
199-
if err != nil {
200-
if models.IsErrUserNotExist(err) {
201-
ctx.HandleText(http.StatusUnauthorized, fmt.Sprintf("invalid credentials from %s", ctx.RemoteAddr()))
202-
} else {
203-
ctx.ServerError("GetUserByName", err)
204-
}
205-
return
206-
}
207-
if authUser.ID != token.UID {
208-
ctx.HandleText(http.StatusUnauthorized, fmt.Sprintf("invalid credentials from %s", ctx.RemoteAddr()))
209-
return
210-
}
191+
authUser, err = models.GetUserByID(token.UID)
192+
if err != nil {
193+
ctx.ServerError("GetUserByID", err)
194+
return
211195
}
196+
212197
token.UpdatedUnix = timeutil.TimeStampNow()
213198
if err = models.UpdateAccessToken(token); err != nil {
214199
ctx.ServerError("UpdateAccessToken", err)

0 commit comments

Comments
 (0)