maximus/Simpl-Resultat
1
0
Fork 0
Code Issues 4 Pull requests Projects Releases 19 Packages Wiki Activity Actions

fix: use write_restricted for account.json (0600 perms)
Some checks are pending
PR Check / rust (push) Waiting to run
Details
PR Check / frontend (push) Waiting to run
Details
PR Check / rust (pull_request) Successful in 17m0s
Details
PR Check / frontend (pull_request) Successful in 2m12s
Details

Browse source 
account.json contains PII and subscription_status — apply the same
restricted file permissions as tokens.json.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
le king fu 2026-04-10 15:04:05 -04:00
parent 9e26ad58d1
commit ca3005bc0e
1 changed files with 2 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
src-tauri/src/commands/auth_commands.rs
View file

@ -207,8 +207,7 @@ pub async fn handle_auth_callback(app: tauri::AppHandle, code: String) -> Result
// Store account info
let account_json =
serde_json::to_string_pretty(&account).map_err(|e| format!("Serialize error: {}", e))?;
fs::write(dir.join(ACCOUNT_FILE), account_json)
.map_err(|e| format!("Cannot write account info: {}", e))?;
write_restricted(&dir.join(ACCOUNT_FILE), &account_json)?;
Ok(account)
}
@ -280,8 +279,7 @@ pub async fn refresh_auth_token(app: tauri::AppHandle) -> Result<AccountInfo, St
let account = fetch_userinfo(&endpoint, &new_access).await?;
let account_json =
serde_json::to_string_pretty(&account).map_err(|e| format!("Serialize error: {}", e))?;
fs::write(dir.join(ACCOUNT_FILE), account_json)
.map_err(|e| format!("Cannot write account info: {}", e))?;
write_restricted(&dir.join(ACCOUNT_FILE), &account_json)?;
Ok(account)
}