issue login-enabled auth token for new account validation

tinode · Aug 30, 2022 · d7b9bfb · d7b9bfb
1 parent 24ecbc1
commit d7b9bfb
Show file tree

Hide file tree

Showing 4 changed files with 9 additions and 10 deletions.
diff --git a/server/db/mysql/adapter.go b/server/db/mysql/adapter.go
@@ -532,12 +532,12 @@ func (a *adapter) CreateDb(reset bool) error {
 	// Links between uploaded files and the topics, users or messages they are attached to.
 	if _, err = tx.Exec(
 		`CREATE TABLE filemsglinks(
-			id			INT NOT NULL AUTO_INCREMENT,
-			createdat	DATETIME(3) NOT NULL,
-			fileid		BIGINT NOT NULL,
-			msgid		INT,
-			topic		CHAR(25),
-			userid		BIGINT,
+			id        INT NOT NULL AUTO_INCREMENT,
+			createdat DATETIME(3) NOT NULL,
+			fileid    BIGINT NOT NULL,
+			msgid     INT,
+			topic     CHAR(25),
+			userid    BIGINT,
 			PRIMARY KEY(id),
 			FOREIGN KEY(fileid) REFERENCES fileuploads(id) ON DELETE CASCADE,
 			FOREIGN KEY(msgid) REFERENCES messages(id) ON DELETE CASCADE,

diff --git a/server/hdl_files.go b/server/hdl_files.go
@@ -155,7 +155,6 @@ func largeFileReceive(wrt http.ResponseWriter, req *http.Request) {
 	// Check authorization: either auth information or SID must be present
 	uid, challenge, err := authHttpRequest(req)
 	if err != nil {
-		logs.Info.Println("File upload auth failed", err)
 		writeHttpResponse(decodeStoreError(err, msgID, "", now, nil), err)
 		return
 	}

diff --git a/server/http.go b/server/http.go
@@ -347,6 +347,7 @@ func authHttpRequest(req *http.Request) (types.Uid, []byte, error) {
 		decodedSecret := make([]byte, base64.StdEncoding.DecodedLen(len(secret)))
 		n, err := base64.StdEncoding.Decode(decodedSecret, []byte(secret))
 		if err != nil {
+			logs.Info.Println("media: invalid auth secret", authMethod, "'"+secret+"'")
 			return uid, nil, types.ErrMalformed
 		}
 
@@ -360,7 +361,7 @@ func authHttpRequest(req *http.Request) (types.Uid, []byte, error) {
 			}
 			uid = rec.Uid
 		} else {
-			logs.Info.Println("fileUpload: auth data is present but handler is not found", authMethod)
+			logs.Info.Println("media: unknown auth method", authMethod)
 		}
 	} else {
 		// Find the session, make sure it's appropriately authenticated.

diff --git a/server/user.go b/server/user.go
@@ -158,9 +158,8 @@ func replyCreateUser(s *Session, msg *ClientComMessage, rec *auth.Rec) {
 	// Save credentials, update tags if necessary.
 	tmpToken, _, _ := store.Store.GetLogicalAuthHandler("token").GenSecret(&auth.Rec{
 		Uid:       user.Uid(),
-		AuthLevel: auth.LevelNone,
+		AuthLevel: auth.LevelAuth,
 		Lifetime:  auth.Duration(time.Hour * 24),
-		Features:  auth.FeatureNoLogin,
 	})
 	validated, _, err := addCreds(user.Uid(), creds, rec.Tags, s.lang, tmpToken)
 	if err != nil {