hailey.at
+6
-6
server/server.go
+6
-6
server/server.go
···
401
402
accessToken := pts[1]
403
404
proof, err := s.oauthProvider.DpopManager.CheckProof(e.Request().Method, "https://"+s.config.Hostname+e.Request().URL.String(), e.Request().Header, to.StringPtr(accessToken))
405
if err != nil {
406
s.logger.Error("invalid dpop proof", "error", err)
···
430
if err != nil {
431
s.logger.Error("could not find actor in db", "error", err)
432
return helpers.ServerError(e, nil)
433
-
}
434
-
435
-
nonce := s.oauthProvider.NextNonce()
436
-
if nonce != "" {
437
-
e.Response().Header().Set("DPoP-Nonce", nonce)
438
-
e.Response().Header().Add("access-control-expose-headers", "DPoP-Nonce")
439
}
440
441
e.Set("repo", repo)
···
401
402
accessToken := pts[1]
403
404
+
nonce := s.oauthProvider.NextNonce()
405
+
if nonce != "" {
406
+
e.Response().Header().Set("DPoP-Nonce", nonce)
407
+
e.Response().Header().Add("access-control-expose-headers", "DPoP-Nonce")
408
+
}
409
+
410
proof, err := s.oauthProvider.DpopManager.CheckProof(e.Request().Method, "https://"+s.config.Hostname+e.Request().URL.String(), e.Request().Header, to.StringPtr(accessToken))
411
if err != nil {
412
s.logger.Error("invalid dpop proof", "error", err)
···
436
if err != nil {
437
s.logger.Error("could not find actor in db", "error", err)
438
return helpers.ServerError(e, nil)
439
}
440
441
e.Set("repo", repo)