jwt in headers+localstorage instead of httpOnly cookie (#117)

2023-12-27 14:32:08 +01:00
parent f7ba203ed0
commit c5535fad71
14 changed files with 125 additions and 155 deletions
--- a/server/rest/container.go
+++ b/server/rest/container.go
@@ -4,6 +4,7 @@ import (
 	"database/sql"

 	"github.com/go-chi/chi/v5"
+	"github.com/marcopeocchi/yt-dlp-web-ui/server/config"
 	"github.com/marcopeocchi/yt-dlp-web-ui/server/internal"
 	middlewares "github.com/marcopeocchi/yt-dlp-web-ui/server/middleware"
 )
@@ -20,7 +21,9 @@ func ApplyRouter(db *sql.DB, mdb *internal.MemoryDB, mq *internal.MessageQueue)
 	h := Container(db, mdb, mq)

 	return func(r chi.Router) {
-		r.Use(middlewares.Authenticated)
+		if config.Instance().RequireAuth {
+			r.Use(middlewares.Authenticated)
+		}
 		r.Post("/exec", h.Exec())
 		r.Get("/running", h.Running())
 		r.Post("/cookies", h.SetCookies())