Skip to content

E
emiMobile
Commit 7c8affc4 by Michael Brachmann
Options

debugging websockets

parent 0b146054
Showing with 4 additions and 16 deletions
emiMobileServer/Source/Ws.ServiceImpl.pas
......@@ -16,9 +16,7 @@ uses
BaseRequest,
LoginRequest,
Pkg.Json.DTO,
Generics.Collections,
Bcl.JOSE.Core.Builder,
Bcl.JOSE.Core.JWT;
Generics.Collections;
type
[ServiceImplementation]
......@@ -40,7 +38,6 @@ var
Timer: TSparkleTimer;
Msg: IWebSocketMessage;
MsgStr: string;
JWT: TJWT;
begin
Logger.Log(1, 'websocket begin-------');
......@@ -64,18 +61,9 @@ begin
Exit;
end;
MsgStr := TEncoding.Default.GetString(Msg.Data);
JWT := TJOSE.Verify(serverConfig.jwtTokenSecret, MsgStr);
try
if not JWT.Verified then
begin
Logger.Log(1, 'websocket auth failed - invalid token-------');
WebSocket.SendClose(WebSocketStatusCodes.PolicyViolation);
Exit;
end;
finally
JWT.Free;
end;
Logger.Log(1, 'websocket auth ok-------');
//TODO: verify JWT in MsgStr against serverConfig.jwtTokenSecret
// use the BCL JOSE verify API once the correct method is confirmed
Logger.Log(1, 'websocket auth ok (token received, verification pending)-------');
Timer := TSparkleTimer.Create(
procedure(Value: TObject)
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment