beerpsi
/
artemisapi
forked from PolarisPyra/artemisapi
1
0
Fork 0
Code Pull Requests Activity

Add a whitelist for creating keychips

This commit is contained in:
beerpiss 2024-03-12 10:37:39 +07:00
parent 42693bb454
commit 7d162724db
1 changed files with 6 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
chunithm/13/postRoutes.js
View File

@ -5,15 +5,6 @@ const bcrypt = require("bcrypt");
const jwt = require("jsonwebtoken");
const { RequireNotGuest } = require("../../middleware/auth");
function generateToken(userId, version, rivalCode) {
const payload = { userId, version, rivalCode }; // Include rivalCode in the payload
const secret = process.env.JWT_SECRET;
const options = { expiresIn: "12h" };
const token = jwt.sign(payload, secret, options);
return token;
}
const router = express.Router({ mergeParams: true });
router.post("/registerUser", registerUserHandler);
@ -327,6 +318,12 @@ function updateChuniPlayerTeamHandler(req, res) {
function createKeychipHandler(req, res) {
const user = req.session.cozynet.userId;
const allowedUsers = process.env.SYSOP_USER_IDS.split(",").map((e) => Number(e));
if (!allowedUsers.includes(user)) {
return res.status(401).send("You are not allowed to create a keychip.");
}
const { arcade_nickname, name, game, namcopcbid, serial } = req.body;
const sqlValidateAccessCode = `