Reverse proxy authentication

2024-12-04 18:19:54 +00:00 · 2024-06-16 14:14:54 +01:00 · 2024-06-16 14:14:54 +01:00 · ceff8ad91b
commit ceff8ad91b
parent f1d4310ec1
1 changed files with 3 additions and 3 deletions
--- a/user/net.go
+++ b/user/net.go
@ -25,11 +25,11 @@ func CanProceed(rq *http.Request, route string) bool {

 // FromRequest returns user from `rq`. If there is no user, an anon user is returned instead.
 func FromRequest(rq *http.Request) *User {
-	cookie, err := rq.Cookie("mycorrhiza_token")
-	if err != nil {
+	username, ok := rq.Header["X-Webauth-User"]
+	if !ok || len(username) < 1 {
 		return EmptyUser()
 	}
-	return ByToken(cookie.Value)
+	return ByName(username[0])
 }

 // LogoutFromRequest logs the user in `rq` out and rewrites the cookie in `w`.