Matrix-Mirrors/maubot
1
0
Fork 0
mirror of https://github.com/maubot/maubot.git synced 2024-09-21 16:25:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add created at timestamp to tokens for future-proofing

Browse Source
This commit is contained in:
Tulir Asokan 2018-11-01 12:59:22 +02:00
parent e48cd26cb0
commit cbeff0c0cb
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
maubot/management/api/auth.py
View File

@ -13,9 +13,11 @@
#
# You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <https://www.gnu.org/licenses/>.
from aiohttp import web
from time import time
import json
from aiohttp import web
from mautrix.types import UserID
from mautrix.util.signed_token import sign_token, verify_token
@ -47,6 +49,7 @@ async def login(request: web.Request) -> web.Response:
user = data.get("user") or "root"
return web.json_response({
"token": create_token(user),
"created_at": int(time()),
})
username = data.get("username")
@ -54,6 +57,7 @@ async def login(request: web.Request) -> web.Response:
if get_config().check_password(username, password):
return web.json_response({
"token": create_token(username),
"created_at": int(time()),
})
return ErrBadAuth