feat: validate proxy targets during signing and proxy fetch

This commit is contained in:
2026-06-26 23:56:23 +02:00
parent f8e3f89e42
commit 5338c61a5d
3 changed files with 12 additions and 3 deletions

View File

@@ -7,6 +7,7 @@ import (
"mal/integrations/jikan"
"mal/internal/domain"
"mal/internal/observability"
"mal/internal/playback/proxytarget"
errlog "mal/pkg"
netutil "mal/pkg/net"
"net/http"
@@ -43,6 +44,9 @@ func (s *playbackService) SignProxyToken(targetURL, referer, scope string) (stri
if s.proxyTokenKey == "" {
return "", nil
}
if err := proxytarget.Validate(targetURL); err != nil {
return "", err
}
return s.proxyTokens.create(targetURL, referer, scope, 2*time.Hour, time.Now())
}