From a9f028db268c426ec4e4f2f7cf2194628bfc070c Mon Sep 17 00:00:00 2001
From: mo khan <mo@mokhan.ca>
Date: Tue, 17 May 2022 22:38:49 -0600
Subject: use wildcard subject for unauthenticated sessions

---
 cmd/api/main.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'cmd/api')

diff --git a/cmd/api/main.go b/cmd/api/main.go
index 0359dc9..2f2e1b8 100644
--- a/cmd/api/main.go
+++ b/cmd/api/main.go
@@ -43,7 +43,7 @@ func Authorizer(e *casbin.Enforcer, keySet jwk.Set) func(next http.Handler) http
 			var subject string
 			raw := jwtauth.TokenFromHeader(r)
 			if raw == "" {
-				subject = ""
+				subject = "*"
 			} else {
 				token, err := jwt.ParseString(raw, jwt.WithKeySet(keySet))
 				if err != nil {
-- 
cgit v1.2.3