Check nonce in Message send

author: Madeline <46743919+MaddyUnderStars@users.noreply.github.com> 2022-10-05 01:17:00 +1100
committer: Madeline <46743919+MaddyUnderStars@users.noreply.github.com> 2022-10-05 01:30:37 +1100
commit: f35c8a1f49b8dab56a3ca3ae4a9dd677f3bfc43e (patch)
tree: f3ac4539bfe7e0dc183355e7824df80d67b2bb2d
parent: Add the automatic install script, thanks @Haydaralqassam (diff)
download: server-f35c8a1f49b8dab56a3ca3ae4a9dd677f3bfc43e.tar.xz
1 files changed, 13 insertions, 0 deletions
diff --git a/src/api/routes/channels/#channel_id/messages/index.ts b/src/api/routes/channels/#channel_id/messages/index.ts
index 747701db..e0c91b8a 100644
--- a/src/api/routes/channels/#channel_id/messages/index.ts
+++ b/src/api/routes/channels/#channel_id/messages/index.ts
@@ -201,6 +201,19 @@ router.post(
 			);
 		}
 
+		if (body.nonce) {
+			const existing = await Message.findOne({
+				where: {
+					nonce: body.nonce,
+					channel_id: channel.id,
+					author_id: req.user_id
+				}
+			});
+			if (existing) {
+				return res.json(existing);
+			}
+		}
+
 		const files = (req.files as Express.Multer.File[]) ?? [];
 		for (var currFile of files) {
 			try {
author	Madeline <46743919+MaddyUnderStars@users.noreply.github.com>	2022-10-05 01:17:00 +1100
committer	Madeline <46743919+MaddyUnderStars@users.noreply.github.com>	2022-10-05 01:30:37 +1100
commit	f35c8a1f49b8dab56a3ca3ae4a9dd677f3bfc43e (patch)
tree	f3ac4539bfe7e0dc183355e7824df80d67b2bb2d
parent	Add the automatic install script, thanks @Haydaralqassam (diff)
download	server-f35c8a1f49b8dab56a3ca3ae4a9dd677f3bfc43e.tar.xz