davidl/IPTV-Restream
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #81 from antebrl/79-authorization-issue-in-the-api

Browse Source 
Authorization issue in the API
This commit is contained in:
Ante Brähler
2025-10-29 21:39:53 +01:00
committed by GitHub
parent 928a4bf52a 7d032c2703
commit 40bdcba29f
1 changed files with 13 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
backend/controllers/AuthController.js
View File

@@ -12,6 +12,13 @@ module.exports = {
const { password } = req.body; const { password } = req.body;
if (!password) {
return res.status(400).json({
success: false,
message: "Password is required",
});
}
if (authService.verifyAdminPassword(password)) { if (authService.verifyAdminPassword(password)) {
const token = authService.generateAdminToken(); const token = authService.generateAdminToken();
@@ -35,6 +42,12 @@ module.exports = {
}, },
verifyToken(req, res, next) { verifyToken(req, res, next) {
// If admin mode is disabled, allow all requests (skip authentication)
if (!authService.isAdminEnabled()) {
req.user = { isAdmin: false };
return next();
}
const token = req.headers.authorization?.split(" ")[1]; const token = req.headers.authorization?.split(" ")[1];
if (!token) { if (!token) {