Changed from ip whitelist to token based auth

author: kanadeko <[email protected]> 2017-01-14 18:13:58 -0300
committer: kanadeko <[email protected]> 2017-01-14 18:13:58 -0300
commit: b81cf72ac41f61e48a86d699e12fcfc327cefb14 (patch)
tree: c64cdd3d6df48a1969148f7b0fca2cbd60568ded /routes
parent: Update config.sample.js (diff)
download: host.fuwn.me-b81cf72ac41f61e48a86d699e12fcfc327cefb14.tar.xz
host.fuwn.me-b81cf72ac41f61e48a86d699e12fcfc327cefb14.zip
1 files changed, 5 insertions, 4 deletions
diff --git a/routes/routes.js b/routes/routes.js
index e81b733..23a1a60 100644
--- a/routes/routes.js
+++ b/routes/routes.js
@@ -4,12 +4,13 @@ const uploadController = require('../controllers/uploadController')
 const galleryController = require('../controllers/galleryController')
 
 routes.get  ('/info', (req, res, next) => {
-	if(!config.privacy.public)
-		if(!config.privacy.IPs.includes(req.ip)) return res.status(401).send('not-authorized')
 
+	if(config.TOKEN !== '')
+		if(req.headers.auth !== config.TOKEN)
+			return res.status(401).send('not-authorized')
+		
 	return res.json({
-		maxFileSize: config.uploads.maxsize.slice(0, -2),
-		urlPrefix: config.uploads.prefix
+		maxFileSize: config.uploads.maxsize.slice(0, -2)
 	})
 })
author	kanadeko <[email protected]>	2017-01-14 18:13:58 -0300
committer	kanadeko <[email protected]>	2017-01-14 18:13:58 -0300
commit	b81cf72ac41f61e48a86d699e12fcfc327cefb14 (patch)
tree	c64cdd3d6df48a1969148f7b0fca2cbd60568ded /routes
parent	Update config.sample.js (diff)
download	host.fuwn.me-b81cf72ac41f61e48a86d699e12fcfc327cefb14.tar.xz host.fuwn.me-b81cf72ac41f61e48a86d699e12fcfc327cefb14.zip