relaxing current static token support.

Sachin Maheshwari · Sachin Maheshwari · commit 03e7d0b29753 · 2018-05-17T14:53:16.000+05:30
diff --git a/.circleci/config.yml b/.circleci/config.yml
@@ -82,7 +82,7 @@ workflows:
       - "build-dev":
           filters:
             branches:
-              only: ['dev']
+              only: ['dev','feature/m2mtoken-support']
       - "build-prod":
           filters:
             branches:
diff --git a/common/helper.js b/common/helper.js
@@ -192,10 +192,9 @@ function validateEventPayload (event) {
 function verifyTokenScope(req, scope) {
   const isMachineToken = _.get(req, 'authUser.isMachine', false);
   const scopes = _.get(req, 'authUser.scopes', []);
-  if (isMachineToken && (_.indexOf(scopes, scope) >= 0)) {
-    return true;
+  if (isMachineToken && !(_.indexOf(scopes, scope) >= 0)) {
+    throw createError.Unauthorized("Check your token scope.")
   }
-  throw createError.Unauthorized("Check your token scope.")
 }
 
 module.exports = {

Original file line number	Diff line number	Diff line change
`@@ -192,10 +192,9 @@ function validateEventPayload (event) {`
`192`	`192`	`function verifyTokenScope(req, scope) {`
`193`	`193`	`const isMachineToken = _.get(req, 'authUser.isMachine', false);`
`194`	`194`	`const scopes = _.get(req, 'authUser.scopes', []);`
`195`		`- if (isMachineToken && (_.indexOf(scopes, scope) >= 0)) {`
`196`		`- return true;`
	`195`	`+ if (isMachineToken && !(_.indexOf(scopes, scope) >= 0)) {`
	`196`	`+ throw createError.Unauthorized("Check your token scope.")`
`197`	`197`	`}`
`198`		`- throw createError.Unauthorized("Check your token scope.")`
`199`	`198`	`}`
`200`	`199`
`201`	`200`	`module.exports = {`