liquid_feedback_frontend
annotate app/main/oauth2/session.lua @ 1538:25ea15b4bd5e
Reworked cookie session control, exceptions for API
| author | bsw |
|---|---|
| date | Tue Oct 20 17:48:49 2020 +0200 (2020-10-20) |
| parents | 32cc544d5a5b |
| children |
| rev | line source |
|---|---|
| bsw/jbe@1309 | 1 if not request.is_post() then |
| bsw/jbe@1309 | 2 return execute.view { module = "index", view = "405" } |
| bsw/jbe@1309 | 3 end |
| bsw/jbe@1309 | 4 |
| bsw/jbe@1309 | 5 slot.set_layout(nil, "application/json") |
| bsw/jbe@1309 | 6 |
| bsw/jbe@1309 | 7 local r = json.object{ |
| bsw/jbe@1309 | 8 member_id = json.null |
| bsw/jbe@1309 | 9 } |
| bsw/jbe@1309 | 10 |
| bsw@1538 | 11 if app.session and app.session.member_id then |
| bsw/jbe@1309 | 12 local origin = request.get_header("Origin") |
| bsw/jbe@1309 | 13 if origin then |
| bsw/jbe@1309 | 14 local system_applications = SystemApplication:by_origin(origin) |
| bsw/jbe@1309 | 15 if #system_applications > 0 then |
| bsw/jbe@1309 | 16 r.member_id = app.session.member_id |
| bsw/jbe@1309 | 17 r.real_member_id = app.session.real_member_id |
| bsw/jbe@1309 | 18 if app.session.member.role then |
| bsw/jbe@1309 | 19 r.member_is_role = true |
| bsw/jbe@1309 | 20 end |
| bsw/jbe@1309 | 21 else |
| bsw/jbe@1309 | 22 local member_application = MemberApplication:by_member_id_and_origin(app.session.member_id, origin) |
| bsw/jbe@1309 | 23 if member_application then |
| bsw/jbe@1309 | 24 r.member_id = app.session.member_id |
| bsw/jbe@1309 | 25 r.real_member_id = app.session.real_member_id |
| bsw/jbe@1309 | 26 end |
| bsw/jbe@1309 | 27 end |
| bsw/jbe@1309 | 28 end |
| bsw/jbe@1309 | 29 end |
| bsw/jbe@1309 | 30 |
| bsw/jbe@1309 | 31 slot.put_into("data", json.export(r)) |
| bsw/jbe@1309 | 32 |