transatoshi/grin-explorer
1
0
Fork 0
mirror of https://github.com/transatoshi-mw/grin-explorer.git synced 2025-10-21 13:33:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

do not use local api secrets for external node connections

Browse Source
This commit is contained in:
aglkm
2024-10-04 13:43:17 +03:00
parent f6cd3957a2
commit 82a7566570
1 changed files with 1 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
src/requests.rs
View File

@@ -116,23 +116,15 @@ pub async fn call(method: &str, params: &str, id: &str, rpc_type: &str) -> Resul
// RPC requests to grin node. // RPC requests to grin node.
// The same call as above but with the option to add ip, proto and port. // The same call as above but with no api secrets usage and the option to specify custom endpoint.
pub async fn call_external(method: &str, params: &str, id: &str, rpc_type: &str, endpoint: String) -> Result<Value, anyhow::Error> { pub async fn call_external(method: &str, params: &str, id: &str, rpc_type: &str, endpoint: String) -> Result<Value, anyhow::Error> {
let rpc_url; let rpc_url;
let secret;
rpc_url = format!("{}/v2/{}", endpoint, rpc_type); rpc_url = format!("{}/v2/{}", endpoint, rpc_type);
if rpc_type == "owner" {
secret = CONFIG.api_secret.clone();
} else {
secret = CONFIG.foreign_api_secret.clone();
}
let client = reqwest::Client::new(); let client = reqwest::Client::new();
let result = client.post(rpc_url) let result = client.post(rpc_url)
.body(format!("{{\"method\": \"{}\", \"params\": {}, \"id\": {}, \"jsonrpc\": \"2.0\"}}", method, params, id)) .body(format!("{{\"method\": \"{}\", \"params\": {}, \"id\": {}, \"jsonrpc\": \"2.0\"}}", method, params, id))
.basic_auth(CONFIG.user.clone(), Some(secret))
.header("content-type", "application/json") .header("content-type", "application/json")
.send() .send()
.await?; .await?;