Check if the jwtToken is valid in authViewer. (#1785)

Closes #1514
2024-11-06 17:05:18 +00:00 · 2018-05-16 17:36:35 +02:00 · 2018-05-16 17:36:35 +02:00 · d7e1462d10
commit d7e1462d10
parent b42e4bacf2
1 changed files with 3 additions and 0 deletions
--- a/server/service/endpoint_middleware.go
+++ b/server/service/endpoint_middleware.go
@ -94,6 +94,9 @@ func authViewer(ctx context.Context, jwtKey string, bearerToken token.Token, svc
 	if err != nil {
 		return nil, authError{reason: err.Error()}
 	}
+	if jwtToken.Valid != true {
+		return nil, authError{reason: "invalid jwt token"}
+	}
 	claims, ok := jwtToken.Claims.(jwt.MapClaims)
 	if !ok {
 		return nil, authError{reason: "no jwt claims"}