Kiu/Semaphore
Kiu/Semaphore
1
0
Fork 0
mirror of https://github.com/semaphoreui/semaphore.git synced 2025-01-20 15:29:28 +01:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

fix(runner): check token

Browse Source
This commit is contained in:
Denis Gukov 2024-01-07 21:32:30 +05:00
parent 1ae8eb1376
commit 5596943433
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
api/runners/runners.go
View File

@ -13,6 +13,8 @@ import (
func RunnerMiddleware(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
token := r.Header.Get("X-API-Token")
runnerID, err := helpers.GetIntParam("runner_id", w, r)
if err != nil {
@ -26,6 +28,13 @@ func RunnerMiddleware(next http.Handler) http.Handler {
runner, err := store.GetGlobalRunner(runnerID)
if runner.Token != token {
helpers.WriteJSON(w, http.StatusUnauthorized, map[string]string{
"error": "Invalid token",
})
return
}
if err != nil {
helpers.WriteJSON(w, http.StatusNotFound, map[string]string{
"error": "Runner not found",