Check email validity on all requests rather than only on login/refresh

2015-07-14 08:40:59 -06:00 · 2015-07-14 08:40:59 -06:00 · 6cd3e72e09
commit 6cd3e72e09
parent 3a792555f1
1 changed files with 1 additions and 1 deletions
--- a/oauthproxy.go
+++ b/oauthproxy.go
@ -484,7 +484,7 @@ func (p *OauthProxy) Proxy(rw http.ResponseWriter, req *http.Request) {
 		}
 	}

-	if saveSession && session.Email != "" && !p.Validator(session.Email) {
+	if session != nil && session.Email != "" && !p.Validator(session.Email) {
 		log.Printf("%s Permission Denied: removing session %s", remoteAddr, session)
 		session = nil
 		saveSession = false