make secure check
This commit is contained in:
parent
817c1d2e4b
commit
a6fdb28560
1 changed files with 8 additions and 5 deletions
|
@ -151,11 +151,14 @@ mastoRouter.post("/oauth/token", async (ctx) => {
|
|||
const BASE_URL = `${ctx.request.protocol}://${ctx.request.hostname}`;
|
||||
const generator = (megalodon as any).default;
|
||||
const client = generator("misskey", BASE_URL, null) as MegalodonInterface;
|
||||
const m = body.code.match(/^[a-zA-Z0-9-]+/);
|
||||
if (!m.length) {
|
||||
ctx.body = { error: "Invalid code" };
|
||||
return;
|
||||
}
|
||||
let m = null;
|
||||
if (body.code) {
|
||||
m = body.code.match(/^[a-zA-Z0-9-]+/);
|
||||
if (!m.length) {
|
||||
ctx.body = { error: "Invalid code" };
|
||||
return;
|
||||
}
|
||||
}
|
||||
try {
|
||||
const atData = await client.fetchAccessToken(
|
||||
null,
|
||||
|
|
Loading…
Reference in a new issue