You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
29 lines
747 B
29 lines
747 B
import DOMPurify from 'isomorphic-dompurify'
|
|
import TokenHelper from './../helper/token.js'
|
|
import logger from './../helper/logger.js'
|
|
|
|
/**
|
|
* handle token
|
|
*
|
|
* @author Björn Hase <me@herr-hase.wtf>
|
|
* @license hhttps://www.gnu.org/licenses/gpl-3.0.en.html GPL-3
|
|
* @link https://git.node001.net/HerrHase/signpost.git
|
|
*
|
|
*/
|
|
|
|
async function tokenHandler(request, response) {
|
|
|
|
let token = DOMPurify.sanitize(request.params.token)
|
|
|
|
// check if token is same as for the flow
|
|
if (!TokenHelper.equal(token, response.locals.flow.hash)) {
|
|
logger(response.locals.flow.uuid).error('token not equal with hash from flow')
|
|
|
|
return response
|
|
.code(403)
|
|
.send()
|
|
}
|
|
}
|
|
|
|
export default tokenHandler
|