Merge pull request #22 from natron-io/fix_auth

fix logged in issue
netricsag · Jan 23, 2022 · 2f54c5b · 2f54c5b
2 parents 93efc8d + 6b0091c
commit 2f54c5b
Showing 1 changed file with 12 additions and 0 deletions.
diff --git a/controllers/authController.go b/controllers/authController.go
@@ -52,6 +52,13 @@ func LoggedIn(c *fiber.Ctx, githubData string) error {
 		githubTeamSlugs = append(githubTeamSlugs, githubTeam["slug"].(string))
 	}
 
+	if githubTeamSlugs == nil {
+		// return unauthorized
+		return c.Status(401).JSON(fiber.Map{
+			"message": "Unauthorized",
+		})
+	}
+
 	claims := jwt.MapClaims{
 		"github_team_slugs": githubTeamSlugs,
 	}
@@ -93,6 +100,11 @@ func CheckAuth(c *fiber.Ctx) []string {
 
 	claims := token.Claims.(jwt.MapClaims)
 
+	if claims["github_team_slugs"] == nil {
+		util.WarningLogger.Printf("IP %s is not authorized", c.IP())
+		return nil
+	}
+
 	var githubTeamSlugs []string
 	for _, githubTeam := range claims["github_team_slugs"].([]interface{}) {
 		githubTeamSlugs = append(githubTeamSlugs, githubTeam.(string))