Skip jwt token security when impersonating

JhumanJ · JhumanJ · commit 31e5624aec46 · 2024-03-21T17:55:15.000+01:00
diff --git a/app/Http/Middleware/AuthenticateJWT.php b/app/Http/Middleware/AuthenticateJWT.php
@@ -32,6 +32,11 @@ public function handle(Request $request, Closure $next)
                 }
             }
 
+            // If it's impersonating, skip the rest
+            if ($payload->get('impersonating')) {
+                return $next($request);
+            }
+
             $error = null;
             if (! \Hash::check($request->ip(), $payload->get('ip'))) {
                 $error = 'Origin IP is invalid';

Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,11 @@ public function handle(Request $request, Closure $next)`
`32`	`32`	`}`
`33`	`33`	`}`
`34`	`34`
	`35`	`+ // If it's impersonating, skip the rest`
	`36`	`+ if ($payload->get('impersonating')) {`
	`37`	`+ return $next($request);`
	`38`	`+ }`
	`39`	`+`
`35`	`40`	`$error = null;`
`36`	`41`	`if (! \Hash::check($request->ip(), $payload->get('ip'))) {`
`37`	`42`	`$error = 'Origin IP is invalid';`