ElyBy-Mirror/accounts
1
0
Fork 0
mirror of https://github.com/elyby/accounts.git synced 2024-11-26 16:52:02 +05:30
Code Issues Packages Projects Releases Wiki Activity

Исправлена проверка авторизации для запроса на refresh-token

Browse Source
This commit is contained in:
ErickSkrauch 2016-12-13 01:10:05 +03:00
parent f2e6df4022
commit 6d4bef0549
2 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
api/components/User/Component.php
View File

@ -110,7 +110,7 @@ class Component extends YiiUserComponent {
return $result;
}
public function renew(AccountSession $session) {
public function renew(AccountSession $session): RenewResult {
$account = $session->account;
$transaction = Yii::$app->db->beginTransaction();
try {

5
api/controllers/AuthenticationController.php
View File

@ -17,13 +17,14 @@ class AuthenticationController extends Controller {
public function behaviors() {
return ArrayHelper::merge(parent::behaviors(), [
'authenticator' => [
'except' => ['login', 'forgot-password', 'recover-password', 'refresh-token'],
'only' => ['logout'],
],
'access' => [
'class' => AccessControl::class,
'except' => ['refresh-token'],
'rules' => [
[
'actions' => ['login', 'forgot-password', 'recover-password', 'refresh-token'],
'actions' => ['login', 'forgot-password', 'recover-password'],
'allow' => true,
'roles' => ['?'],
],