chore: Revert "chore: ignore jwt if not access controlled"

This reverts commit 7abfd32.
adobe · Jul 10, 2023 · eb52f11 · eb52f11
1 parent 7abfd32
commit eb52f11
Showing 1 changed file with 3 additions and 4 deletions.
diff --git a/src/steps/authenticate.js b/src/steps/authenticate.js
@@ -36,9 +36,11 @@ export function isAllowed(email = '', allows = []) {
  * @returns {Promise<void>}
  */
 export async function authenticate(state, req, res) {
+  // get auth info
+  const authInfo = await getAuthInfo(state, req);
+
   // check if `.auth` route to validate and exchange token
   if (state.info.path === '/.auth') {
-    const authInfo = await getAuthInfo(state, req);
     await authInfo.exchangeToken(state, req, res);
     return;
   }
@@ -48,9 +50,6 @@ export async function authenticate(state, req, res) {
     return;
   }
 
-  // get auth info
-  const authInfo = await getAuthInfo(state, req);
-
   // if not authenticated, redirect to login screen
   if (!authInfo.authenticated) {
     // send 401 for plain requests