首页 发现 帮助
注册 登录
Apq
/
vaultwarden
镜像自地址 https://github.com/dani-garcia/vaultwarden.git
1
0
派生 0
文件 工单管理 0 Wiki
浏览代码

Send access check fixes

Adjust checks for max access count, expiration date, and deletion date.
The date checks aren't that important, but the access count check
currently allows one more access than it should.
Jeremy Lin 4 年之前
父节点
7436b454db
当前提交
00d56d7295
共有 1 个文件被更改,包括 6 次插入6 次删除
分列视图 显示文件统计
  1. 6 6
      src/api/core/sends.rs

+ 6 - 6
src/api/core/sends.rs
查看文件 

@@ -197,18 +197,18 @@ fn post_access(access_id: String, data: JsonUpcase<SendAccessData>, conn: DbConn
 
     };
 
 
     if let Some(max_access_count) = send.max_access_count {
 
-        if send.access_count > max_access_count {
 
+        if send.access_count >= max_access_count {
 
             err_code!("Max access count reached", 404);
 
         }
 
     }
 
 
     if let Some(expiration) = send.expiration_date {
 
-        if Utc::now().naive_utc() > expiration {
 
+        if Utc::now().naive_utc() >= expiration {
 
             err_code!("Send has expired", 404)
 
         }
 
     }
 
 
-    if Utc::now().naive_utc() > send.deletion_date {
 
+    if Utc::now().naive_utc() >= send.deletion_date {
 
         err_code!("Send has been deleted", 404)
 
     }
 
 
@@ -248,18 +248,18 @@ fn post_access_file(
 
     };
 
 
     if let Some(max_access_count) = send.max_access_count {
 
-        if send.access_count > max_access_count {
 
+        if send.access_count >= max_access_count {
 
             err_code!("Max access count reached", 404);
 
         }
 
     }
 
 
     if let Some(expiration) = send.expiration_date {
 
-        if Utc::now().naive_utc() > expiration {
 
+        if Utc::now().naive_utc() >= expiration {
 
             err_code!("Send has expired", 404)
 
         }
 
     }
 
 
-    if Utc::now().naive_utc() > send.deletion_date {
 
+    if Utc::now().naive_utc() >= send.deletion_date {
 
         err_code!("Send has been deleted", 404)
 
     }