Fish Trophy

brennie got a fish trophy!

Fish Trophy

Generate unique tokens for session API

Review Request #9999 — Created June 6, 2018 and submitted — Latest diff uploaded

Information

rb-gateway
master
c793d84...

Reviewers

The /session API now generates a unique, randomly-generated token
instead of returning the user's credentials in the HTTP Basic Auth
format (i.e., base64-encoded username:password).

Since these tokens are randomly generated instead of deterministic, we
store them in a JSON-encoded (for simplicity of
marshalling/unmarshalling) file whose location is specified in
config.json.

Ran go fmt ./....
Ran go test ./....

Created a new session and stopped the server. Observed token in tokens.dat file.

Restarted server and authenticated to protected endpoint with token; was granted access.