8 lines
428 B
TypeScript
8 lines
428 B
TypeScript
import { authorize } from './auth-checks.js';
|
|
import { AuthenticationInfo } from '../authentication-info.js';
|
|
import { AuthenticatedRequest } from '../authenticated-request.js';
|
|
|
|
/**
|
|
* Only allow the user whose username is in the path parameter "username" to access the endpoint.
|
|
*/
|
|
export const preventImpersonation = authorize((auth: AuthenticationInfo, req: AuthenticatedRequest) => req.params.username === auth.username);
|