diff options
| author | Samuel <34555296+Flam3rboy@users.noreply.github.com> | 2021-12-05 20:13:40 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-12-05 20:13:40 +0100 |
| commit | 1b66f71d8cb972bdafe88b4559dcda8cfa42aa4d (patch) | |
| tree | 758f88ab2ad3469d83f3771fa73e05c796f9ee5a | |
| parent | Merge pull request #530 from erkinalp/patch-3 (diff) | |
| parent | Minor API work (diff) | |
| download | server-1b66f71d8cb972bdafe88b4559dcda8cfa42aa4d.tar.xz | |
Merge pull request #536 from Thesourtimes/master
| -rw-r--r-- | api/src/middlewares/Authentication.ts | 8 | ||||
| -rw-r--r-- | api/src/middlewares/TestClient.ts | 3 | ||||
| -rw-r--r-- | api/src/routes/invites/index.ts | 7 | ||||
| -rw-r--r-- | bundle/scripts/build.js | 4 |
4 files changed, 18 insertions, 4 deletions
diff --git a/api/src/middlewares/Authentication.ts b/api/src/middlewares/Authentication.ts index 8fbdd2b7..20ba42d8 100644 --- a/api/src/middlewares/Authentication.ts +++ b/api/src/middlewares/Authentication.ts @@ -3,17 +3,25 @@ import { HTTPError } from "lambert-server"; import { checkToken, Config, Rights } from "@fosscord/util"; export const NO_AUTHORIZATION_ROUTES = [ + //Authentication routes "/auth/login", "/auth/register", + "/auth/location-metadata", + //Routes with a seperate auth system "/webhooks/", + //Public information endpoints "/ping", "/gateway", "/experiments", + //Public kubernetes integration "/-/readyz", "/-/healthz", + //Client nalytics "/science", "/track", + //Public policy pages "/policies/instance", + //Asset delivery /\/guilds\/\d+\/widget\.(json|png)/ ]; diff --git a/api/src/middlewares/TestClient.ts b/api/src/middlewares/TestClient.ts index b50f4e5c..6167d9fd 100644 --- a/api/src/middlewares/TestClient.ts +++ b/api/src/middlewares/TestClient.ts @@ -87,8 +87,9 @@ export default function TestClient(app: Application) { res.set("Cache-Control", "public, max-age=" + 60 * 60 * 24); res.set("content-type", "text/html"); + if(req.url.startsWith("/api")) return; if (req.url.startsWith("/invite")) return res.send(html.replace("9b2b7f0632acd0c5e781", "9f24f709a3de09b67c49")); res.send(html); }); -} +} \ No newline at end of file diff --git a/api/src/routes/invites/index.ts b/api/src/routes/invites/index.ts index 185311bc..c327a63e 100644 --- a/api/src/routes/invites/index.ts +++ b/api/src/routes/invites/index.ts @@ -1,5 +1,5 @@ import { Router, Request, Response } from "express"; -import { emitEvent, getPermission, Guild, Invite, InviteDeleteEvent, Member, PublicInviteRelation } from "@fosscord/util"; +import { emitEvent, getPermission, Guild, Invite, InviteDeleteEvent, User, PublicInviteRelation } from "@fosscord/util"; import { route } from "@fosscord/api"; import { HTTPError } from "lambert-server"; @@ -15,6 +15,11 @@ router.get("/:code", route({}), async (req: Request, res: Response) => { router.post("/:code", route({}), async (req: Request, res: Response) => { const { code } = req.params; + const { features } = await Guild.findOneOrFail({where: { code }}); + const { public_flags } = await User.findOneOrFail({ id: req.user_id }); + + if(features.includes("INTERNAL_EMPLOYEE_ONLY") && (public_flags & 1) !== 1) throw new HTTPError("You are not allowed to join this guild.", 401) + const invite = await Invite.joinGuild(req.user_id, code); res.json(invite); diff --git a/bundle/scripts/build.js b/bundle/scripts/build.js index 549e340f..88d76d34 100644 --- a/bundle/scripts/build.js +++ b/bundle/scripts/build.js @@ -26,9 +26,9 @@ dirs.forEach((a) => { if (verbose) console.log(`Copied ${"../" + a + "/dist"} -> ${"dist/" + a + "/src"}!`); }); -console.log("Copying src files done"); +console.log("[1/2] Copying src files done"); if (!argv.includes("copyonly")) { - console.log("Compiling src files ..."); + console.log("[2/2] Compiling src files ..."); console.log( execSync( |