diff options
Diffstat (limited to 'controllers')
| -rw-r--r-- | controllers/uploadController.js | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/controllers/uploadController.js b/controllers/uploadController.js index 39a9364..d9ca04e 100644 --- a/controllers/uploadController.js +++ b/controllers/uploadController.js @@ -20,7 +20,13 @@ const storage = multer.diskStorage({ const upload = multer({ storage: storage, - limits: { fileSize: config.uploads.maxSize } + limits: { fileSize: config.uploads.maxSize }, + fileFilter: function(req, file, cb) { + if (config.blockedExtensions.some((extension) => { return path.extname(file.originalname) === extension; })) { + return cb('This file extension is not allowed'); + } + return cb(null, true); + } }).array('files[]') uploadsController.upload = function(req, res, next) { |