uqbar-dao/nectar
1
1
Fork 0
mirror of https://github.com/uqbar-dao/nectar.git synced 2024-12-30 12:03:42 +03:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'v0.10.0' into hf/remove-ws-register-encrypted-field

Browse Source
This commit is contained in:
hosted-fornet 2024-12-04 10:54:52 -08:00
commit 729dd494b0
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
kinode/src/http/server.rs
View File

@ -375,10 +375,12 @@ async fn login_handler(
let cookie = match info.subdomain.unwrap_or_default().as_str() {
"" => format!("kinode-auth_{our}={token};"),
subdomain => {
// enforce that subdomain string only contains a-z, 0-9, and -
// enforce that subdomain string only contains a-z, 0-9, ., :, and -
let subdomain = subdomain
.chars()
.filter(|c| c.is_ascii_alphanumeric() || c == &'-')
.filter(|c| {
c.is_ascii_alphanumeric() || c == &'-' || c == &':' || c == &'.'
})
.collect::<String>();
format!("kinode-auth_{our}@{subdomain}={token};")
}