status-im
/
open-bounty
mirror of https://github.com/status-im/open-bounty.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Do not leak Github API access token to client side

This commit is contained in:
Teemu Patja 2017-02-22 10:47:53 +02:00
parent 89475a9365
commit f932b3705d
No known key found for this signature in database
GPG Key ID: F5B7035E6580FD4C
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/clj/commiteth/routes/services.clj
View File

@ -100,12 +100,15 @@
(context "/api" []
(context "/bounties" []
(GET "/all" []
(log/debug "/bounties/all")
(ok (bounties-db/list-all-bounties))))
(context "/user" []
(GET "/" []
:auth-rules authenticated?
:current-user user
(ok {:user (users/get-user (:id user))}))
(ok {:user (dissoc
(users/get-user (:id user))
:token)}))
(POST "/address" []
:auth-rules authenticated?
:body-params [user-id :- Long, address :- String]
@ -141,6 +144,7 @@
(GET "/bounties" []
:auth-rules authenticated?
:current-user user
(log/debug "/user/bounties")
(ok (map #(conj % (let [balance (:balance %)]
{:balance-eth (eth/hex->eth balance 6)}))
(bounties-db/list-owner-bounties (:id user)))))