willdot.net / cocoon
forked from hailey.at/cocoon
An atproto PDS written in Go
fork atom

fix: move setting of next nonce above errors

hailey.at 07024a67 01e9ae1e

options
unified split
Changed files
+6 -6
server
server.go
+6 -6
server/server.go
··· 401 401 402 402 accessToken := pts[1] 403 403 404 + nonce := s.oauthProvider.NextNonce() 405 + if nonce != "" { 406 + e.Response().Header().Set("DPoP-Nonce", nonce) 407 + e.Response().Header().Add("access-control-expose-headers", "DPoP-Nonce") 408 + } 409 + 404 410 proof, err := s.oauthProvider.DpopManager.CheckProof(e.Request().Method, "https://"+s.config.Hostname+e.Request().URL.String(), e.Request().Header, to.StringPtr(accessToken)) 405 411 if err != nil { 406 412 s.logger.Error("invalid dpop proof", "error", err) ··· 430 436 if err != nil { 431 437 s.logger.Error("could not find actor in db", "error", err) 432 438 return helpers.ServerError(e, nil) 433 - } 434 - 435 - nonce := s.oauthProvider.NextNonce() 436 - if nonce != "" { 437 - e.Response().Header().Set("DPoP-Nonce", nonce) 438 - e.Response().Header().Add("access-control-expose-headers", "DPoP-Nonce") 439 439 } 440 440 441 441 e.Set("repo", repo)