authenticate websocket apis using sts (#97)
This commit is contained in:
César Nieto
GitHub
@@ -109,9 +109,8 @@ func (c wsConn) readMessage() (messageType int, p []byte, err error) {
|
|||||||
//
|
//
|
||||||
// TODO: Enable CORS
|
// TODO: Enable CORS
|
||||||
func serveWS(w http.ResponseWriter, req *http.Request) {
|
func serveWS(w http.ResponseWriter, req *http.Request) {
|
||||||
// authenticate WS connection
|
// authenticate WS connection with MCS
|
||||||
// TODO: use this claims to create the adminClient
|
claims, err := ws.Authenticate(req)
|
||||||
_, err := ws.Authenticate(req)
|
|
||||||
if err != nil {
|
if err != nil {
|
||||||
log.Print("error on ws authentication: ", err)
|
log.Print("error on ws authentication: ", err)
|
||||||
errors.ServeError(w, req, err)
|
errors.ServeError(w, req, err)
|
||||||
@@ -126,13 +125,9 @@ func serveWS(w http.ResponseWriter, req *http.Request) {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
// TODO: CHANGE ! to use newMAdminClient once Assume Role is
|
|
||||||
// allowed to do Trace use jwt on ws.
|
|
||||||
|
|
||||||
// Using newSuperMAdminClient in the meantime for sake of functionality
|
|
||||||
// Only start Websocket Interaction after user has been
|
// Only start Websocket Interaction after user has been
|
||||||
// authenticated.
|
// authenticated with MinIO
|
||||||
mAdmin, err := newSuperMAdminClient()
|
mAdmin, err := newAdminFromClaims(claims)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
log.Println("error creating Madmin Client:", err)
|
log.Println("error creating Madmin Client:", err)
|
||||||
errors.ServeError(w, req, err)
|
errors.ServeError(w, req, err)
|
||||||
|
|||||||
Reference in New Issue
Block a user