aboutsummaryrefslogtreecommitdiff
path: root/src/server/ApiManagers/SessionManager.ts
diff options
context:
space:
mode:
authorkimdahey <claire_kim1@brown.edu>2020-01-17 12:21:18 -0500
committerkimdahey <claire_kim1@brown.edu>2020-01-17 12:21:18 -0500
commit7cca0643106c73e8af66bfb31ca297b392d64871 (patch)
treee4132ab62ac3bae68bdbe6630f27504d9c044f65 /src/server/ApiManagers/SessionManager.ts
parent42b325a94f66e6da0a9fdb0ca0740c01ac7b52f1 (diff)
parentc0de8569d4d4dea83174a9d79e780d9d9f5692d7 (diff)
merge w master
Diffstat (limited to 'src/server/ApiManagers/SessionManager.ts')
-rw-r--r--src/server/ApiManagers/SessionManager.ts7
1 files changed, 3 insertions, 4 deletions
diff --git a/src/server/ApiManagers/SessionManager.ts b/src/server/ApiManagers/SessionManager.ts
index a99aa05e0..f1629b8f0 100644
--- a/src/server/ApiManagers/SessionManager.ts
+++ b/src/server/ApiManagers/SessionManager.ts
@@ -8,16 +8,15 @@ const permissionError = "You are not authorized!";
export default class SessionManager extends ApiManager {
- private secureSubscriber = (root: string, ...params: string[]) => new RouteSubscriber(root).add("sessionKey", ...params);
+ private secureSubscriber = (root: string, ...params: string[]) => new RouteSubscriber(root).add("session_key", ...params);
private authorizedAction = (handler: SecureHandler) => {
return (core: AuthorizedCore) => {
- const { req, res, isRelease } = core;
- const { sessionKey } = req.params;
+ const { req: { params }, res, isRelease } = core;
if (!isRelease) {
return res.send("This can be run only on the release server.");
}
- if (sessionKey !== process.env.session_key) {
+ if (params.session_key !== process.env.session_key) {
return _permission_denied(res, permissionError);
}
return handler(core);
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2025-10-18 05:02:11 +0000