server: respond 401 for unknown tokens

coolya · coolya · commit c4c1a62b88b1 · 2021-10-10T11:39:24.000+02:00
diff --git a/server/src/main/kotlin/cloud/skadi/gist/routing/Gist.kt b/server/src/main/kotlin/cloud/skadi/gist/routing/Gist.kt
@@ -42,8 +42,11 @@ fun Application.configureGistRoutes(
             else
                 null
 
-            if (token != null && user == null)
+            if (token != null && user == null) {
                 log.warn("Can't find user by token ($token)")
+                call.respond(HttpStatusCode.Unauthorized, "Token expired")
+                return@post
+            }
 
             val (name, description, visibility, roots) = call.receive<GistCreationRequest>()
 
