chore: allow login with invalid session token

explodingcamera · explodingcamera · commit 34001f7711d8 · 2024-08-29T15:46:58.000+02:00
Signed-off-by: Henry Gressmann &lt;mail@henrygressmann.de&gt;
diff --git a/src/utils/seed.rs b/src/utils/seed.rs
@@ -5,7 +5,7 @@ use rand::Rng;
 use crate::app::models::Event;
 
 const PATHS: &[&str] = &["/", "/about", "/contact", "/pricing", "/blog", "/login", "/signup"];
-const REFERRERS: &[&str] = &["", "google.com", "twitter.com", "facebook.com", "github.com"];
+const REFERRERS: &[&str] = &["", "google.com", "twitter.com", "liwan.dev", "example.com"];
 const PLATFORMS: &[&str] = &["", "Windows", "macOS", "Linux", "Android", "iOS"];
 const BROWSERS: &[&str] = &["", "Chrome", "Firefox", "Safari", "Edge", "Opera"];
 const CITIES: &[(&str, &str)] = &[
diff --git a/src/web/routes/auth.rs b/src/web/routes/auth.rs
@@ -97,9 +97,11 @@ impl AuthApi {
         &self,
         Data(app): Data<&Liwan>,
         cookies: &CookieJar,
-        SessionId(session_id): SessionId,
+        session_id: Option<SessionId>,
     ) -> ApiResult<EmptyResponse> {
-        app.sessions.delete(&session_id).http_status(StatusCode::INTERNAL_SERVER_ERROR)?;
+        if let Some(session_id) = session_id {
+            app.sessions.delete(&session_id.0).http_status(StatusCode::INTERNAL_SERVER_ERROR)?;
+        }
         let mut public_cookie = PUBLIC_COOKIE.clone();
         let mut session_cookie = SESSION_COOKIE.clone();
         public_cookie.set_secure(app.config.secure());
