forked from PolarisPyra/artemisapi
Add a whitelist for creating keychips
This commit is contained in:
parent
42693bb454
commit
7d162724db
|
@ -5,15 +5,6 @@ const bcrypt = require("bcrypt");
|
|||
const jwt = require("jsonwebtoken");
|
||||
const { RequireNotGuest } = require("../../middleware/auth");
|
||||
|
||||
function generateToken(userId, version, rivalCode) {
|
||||
const payload = { userId, version, rivalCode }; // Include rivalCode in the payload
|
||||
const secret = process.env.JWT_SECRET;
|
||||
const options = { expiresIn: "12h" };
|
||||
|
||||
const token = jwt.sign(payload, secret, options);
|
||||
return token;
|
||||
}
|
||||
|
||||
const router = express.Router({ mergeParams: true });
|
||||
|
||||
router.post("/registerUser", registerUserHandler);
|
||||
|
@ -327,6 +318,12 @@ function updateChuniPlayerTeamHandler(req, res) {
|
|||
|
||||
function createKeychipHandler(req, res) {
|
||||
const user = req.session.cozynet.userId;
|
||||
const allowedUsers = process.env.SYSOP_USER_IDS.split(",").map((e) => Number(e));
|
||||
|
||||
if (!allowedUsers.includes(user)) {
|
||||
return res.status(401).send("You are not allowed to create a keychip.");
|
||||
}
|
||||
|
||||
const { arcade_nickname, name, game, namcopcbid, serial } = req.body;
|
||||
|
||||
const sqlValidateAccessCode = `
|
||||
|
|
Loading…
Reference in New Issue