admin/Authentication
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

removed the snippet where it checks the authorization in authentication, authn is purely checking if the user is registered in db

Browse Source
This commit is contained in:
F04C
2026-01-14 08:25:19 +08:00
parent 9af3e50011
commit e2844df53b
1 changed files with 0 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files
handlers/google_auth.go
-14
View File
@@ -309,20 +309,6 @@ func GoogleCallback(w http.ResponseWriter, r *http.Request) {
return return
} }
// Check user authorization via authorization microservice
allowed, err := checkUserAuthorization(userID, accessToken)
if err != nil {
helper.LogError(err, "Authorization check failed")
helper.RespondWithError(w, http.StatusBadGateway, "Authorization check failed")
return
}
if !allowed {
helper.LogWarn(fmt.Sprintf("User %s denied access by authorization service", userID))
helper.RespondWithError(w, http.StatusForbidden, "Access denied: Insufficient permissions")
return
}
helper.LogInfo("Copy this access token: " + accessToken) helper.LogInfo("Copy this access token: " + accessToken)
if FetchedRedirectURI != nil && *FetchedRedirectURI != "" { if FetchedRedirectURI != nil && *FetchedRedirectURI != "" {