make secure check
This commit is contained in:
parent
817c1d2e4b
commit
a6fdb28560
1 changed files with 8 additions and 5 deletions
|
@ -151,11 +151,14 @@ mastoRouter.post("/oauth/token", async (ctx) => {
|
||||||
const BASE_URL = `${ctx.request.protocol}://${ctx.request.hostname}`;
|
const BASE_URL = `${ctx.request.protocol}://${ctx.request.hostname}`;
|
||||||
const generator = (megalodon as any).default;
|
const generator = (megalodon as any).default;
|
||||||
const client = generator("misskey", BASE_URL, null) as MegalodonInterface;
|
const client = generator("misskey", BASE_URL, null) as MegalodonInterface;
|
||||||
const m = body.code.match(/^[a-zA-Z0-9-]+/);
|
let m = null;
|
||||||
|
if (body.code) {
|
||||||
|
m = body.code.match(/^[a-zA-Z0-9-]+/);
|
||||||
if (!m.length) {
|
if (!m.length) {
|
||||||
ctx.body = { error: "Invalid code" };
|
ctx.body = { error: "Invalid code" };
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
}
|
||||||
try {
|
try {
|
||||||
const atData = await client.fetchAccessToken(
|
const atData = await client.fetchAccessToken(
|
||||||
null,
|
null,
|
||||||
|
|
Loading…
Reference in a new issue