wpetit/super-graph
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

fix: vars not sanitized in roles_query

Browse Source
This commit is contained in:
Vikram Rangnekar
2020-04-18 17:46:40 -04:00
parent 4cf7956ff5
commit e6934cda02
4 changed files with 18 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
core/init.go
View File

@ -71,7 +71,7 @@ func (sg *SuperGraph) initConfig() error {
}
// Roles: validate and sanitize
c.RolesQuery = sanitize(c.RolesQuery)
c.RolesQuery = sanitizeVars(c.RolesQuery)
if len(c.RolesQuery) == 0 {
sg.log.Printf("WRN roles_query not defined: attribute based access control disabled")