julius/cutt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: give the token all available scopes for user

Browse Source
This commit is contained in:
julius 2025-03-05 11:45:47 +01:00
parent b7c8136b1e
commit bc6c2a4a98
Signed by: julius
GPG Key ID: C80A63E6A5FD7092
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
security.py
View File

@ -143,7 +143,7 @@ async def login_for_access_token(
allowed_scopes = set(user.scopes.split()) allowed_scopes = set(user.scopes.split())
requested_scopes = set(form_data.scopes) requested_scopes = set(form_data.scopes)
access_token = create_access_token( access_token = create_access_token(
data={"sub": user.username, "scopes": list(allowed_scopes & requested_scopes)}, data={"sub": user.username, "scopes": list(allowed_scopes)},
expires_delta=access_token_expires, expires_delta=access_token_expires,
) )
response.set_cookie( response.set_cookie(