zydronium/internetee-registry
1
0
Fork 0
mirror of https://github.com/internetee/registry.git synced 2025-05-19 10:49:39 +02:00
Code Issues Projects Releases Packages Wiki Activity

added webclient_cert_common_name

Browse source
This commit is contained in:
Priit Tark 2015-03-27 14:59:38 +02:00
parent d66001f8d9
commit 45ab4ce2fa
3 changed files with 10 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

9
app/api/repp/api.rb
View file

@ -8,10 +8,15 @@ module Repp
end
before do
next if Rails.env.test?
message = 'Certificate mismatch! Cert common name should be:'
request_name = ENV['HTTP_SSL_CLIENT_S_DN_CN']
if request.ip == ENV['webclient_ip']
error! 'Certificate mismatch', 401 if env['HTTP_SSL_CLIENT_S_DN_CN'] != 'webclient'
webclient_cert_name = ENV['webclient_cert_common_name'] || 'webclient'
error! "#{message} #{webclient_cert_name}", 401 if webclient_cert_name != request_name
else
error! 'Certificate mismatch', 401 if env['HTTP_SSL_CLIENT_S_DN_CN'] != @current_user.username
error! "#{message} #{@current_user.username}", 401 if @current_user.username != request_name
end
end