habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

root: deny unauthenticated websocket messages consumer

Browse Source 
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
This commit is contained in:
Marc 'risson' Schmitt
2025-02-27 20:31:26 +01:00
parent 42501f6d1e
commit 7d40e00263
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
authentik/root/messages/consumer.py
View File

@ -1,5 +1,6 @@
"""websocket Message consumer""" """websocket Message consumer"""
from channels.exceptions import DenyConnection
from channels.generic.websocket import JsonWebsocketConsumer from channels.generic.websocket import JsonWebsocketConsumer
from django.core.cache import cache from django.core.cache import cache
@ -13,6 +14,8 @@ class MessageConsumer(JsonWebsocketConsumer):
session_key: str session_key: str
def connect(self): def connect(self):
if not self.scope["user"].is_authenticated():
raise DenyConnection()
self.accept() self.accept()
self.session_key = self.scope["session"].session_key self.session_key = self.scope["session"].session_key
if not self.session_key: if not self.session_key: