mirrors/prosody
1
0
Fork 0
mirror of https://github.com/bjc/prosody.git synced 2025-04-04 05:37:39 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

mod_tokenauth: fix traceback if password has never been changed

Browse source 
By checking the password_updated_at for non-nilness before using it,
we avoid a nasty crash :-).
This commit is contained in:
Jonas Schäfer 2023-03-28 21:25:54 +02:00
parent 9305f47525
commit 124b4fa302
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
plugins/mod_tokenauth.lua
View file

@ -174,7 +174,7 @@ local function _get_validated_token_info(token_id, token_user, token_host, token
-- Invalidate grants from before last password change
local account_info = usermanager.get_account_info(token_user, module.host);
local password_updated_at = account_info and account_info.password_updated;
if grant.created < password_updated_at and password_updated_at then
if password_updated_at and grant.created < password_updated_at then
module:log("debug", "Token grant issued before last password change, invalidating it now");
token_store:set_key(token_user, token_id, nil);
return nil, "not-authorized";