make sure the mobile anonymous user has an sid cookie

2016-02-06 20:32:25 +07:00 · 2016-02-06 20:32:25 +07:00 · 086a684641
parent 78163e4575
commit 086a684641
2 changed files with 25 additions and 17 deletions
--- a/app/controllers/Account.scala
+++ b/app/controllers/Account.scala
@ -32,24 +32,30 @@ object Account extends LilaController {
      }
  }

-  def info = Auth { implicit ctx =>
-    me =>
-      negotiate(
-        html = notFound,
-        api = _ =>
-          Env.pref.api getPref me flatMap { prefs =>
-            lila.game.GameRepo urgentGames me map { povs =>
-              Env.current.bus.publish(lila.user.User.Active(me), 'userActive)
-              Ok {
-                import play.api.libs.json._
-                import lila.pref.JsonView._
-                Env.user.jsonView(me, extended = true) ++ Json.obj(
-                  "prefs" -> prefs,
-                  "nowPlaying" -> JsArray(povs take 20 map Env.api.lobbyApi.nowPlaying))
-              }
+  def info = Open { implicit ctx =>
+    negotiate(
+      html = notFound,
+      api = _ => ctx.me match {
+        case None => fuccess {
+          ctx.req.session.data.contains(LilaCookie.sessionId).fold(
+            unauthorizedApiResult,
+            unauthorizedApiResult withCookies LilaCookie.makeSessionId(ctx.req)
+          )
+        }
+        case Some(me) => Env.pref.api getPref me flatMap { prefs =>
+          lila.game.GameRepo urgentGames me map { povs =>
+            Env.current.bus.publish(lila.user.User.Active(me), 'userActive)
+            Ok {
+              import play.api.libs.json._
+              import lila.pref.JsonView._
+              Env.user.jsonView(me, extended = true) ++ Json.obj(
+                "prefs" -> prefs,
+                "nowPlaying" -> JsArray(povs take 20 map Env.api.lobbyApi.nowPlaying))
            }
          }
-      )
+        }
+      }
+    )
  }

  def passwd = Auth { implicit ctx =>
--- a/app/controllers/LilaController.scala
+++ b/app/controllers/LilaController.scala
@ -246,9 +246,11 @@ private[controllers] trait LilaController
        implicit val req = ctx.req
        Redirect(routes.Auth.signup) withCookies LilaCookie.session(Env.security.api.AccessUri, req.uri)
      },
-      api = _ => Unauthorized(Json.obj("error" -> "Login required")).fuccess
+      api = _ => unauthorizedApiResult.fuccess
    )

+  protected val unauthorizedApiResult = Unauthorized(Json.obj("error" -> "Login required"))
+
  protected def authorizationFailed(req: RequestHeader): Result =
    Forbidden("no permission")