You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
My guess is that the mux subrouter doesn't authenticate the user (note the s.router.PathPrefix("/") and not router.PathPrefix("/")), so the requireNoAuth always delegates to the next handler, thus no restrictions are actually in place.
The text was updated successfully, but these errors were encountered:
The
requireNoAuth
middleware should redirect users to the homepage if they are already logged.wtf/http/server.go
Lines 111 to 116 in 05bc90c
But if they are required to be not logged, how can they issue a logout, since the route is protected by the
requireNoAuth
middleware?wtf/http/auth.go
Lines 19 to 24 in 05bc90c
My guess is that the mux subrouter doesn't authenticate the user (note the
s.router.PathPrefix("/")
and notrouter.PathPrefix("/")
), so therequireNoAuth
always delegates to the next handler, thus no restrictions are actually in place.The text was updated successfully, but these errors were encountered: