admin/raven
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Browse Source
This commit is contained in:
John Cardinal
2022-03-04 19:06:46 +00:00
parent 9f02542244
commit e17effed2e
1 changed files with 8 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
server/AyaNova/Startup.cs
View File

@@ -486,6 +486,7 @@ namespace AyaNova
{
//It may be a local report render request from a job
bool bLocalReportRenderRequest = false;
if (context.Request.Host.Host == "127.0.0.1")
{
//check if token has j value set
@@ -494,14 +495,17 @@ namespace AyaNova
if (context.User.Claims.FirstOrDefault(c => c.Type == "j") != null)
{
//it's a local request, the jwt already passed earlier so we issued it and it has the correct claim set so allow it
bLocalReportRenderRequest = true;
await next.Invoke();
}
}
}
context.Response.StatusCode = 401;
context.Response.Headers.Add("X-AyaNova-Authorization-Error", "E2004 - Authorization token replaced by more recent login");
await context.Response.WriteAsync("E2004 - Authorization token replaced by more recent login");
if (!bLocalReportRenderRequest)
{
context.Response.StatusCode = 401;
context.Response.Headers.Add("X-AyaNova-Authorization-Error", "E2004 - Authorization token replaced by more recent login");
await context.Response.WriteAsync("E2004 - Authorization token replaced by more recent login");
}
}
else
{