Enforce domain

This commit is contained in:
Emil Thelin 2015-04-23 20:38:00 +02:00
parent b99ee2562e
commit 9fd3ef2687

View File

@ -34,6 +34,16 @@ func GetContextHandler() macaron.Handler {
AllowAnonymous: false,
}
h := ctx.Req.Host
if i := strings.Index(h, ":"); i >= 0 {
h = h[:i]
}
if !strings.EqualFold(h, setting.Domain) {
ctx.Redirect(strings.TrimSuffix(setting.AppUrl, "/") + ctx.Req.RequestURI, 301)
return
}
// the order in which these are tested are important
// look for api key in Authorization header first
// then init session and look for userId in session