Home Explore Help
Sign In
ghorsington
/
meidosafe
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

In theory this will enable us to disable users and not break already running instances

Kana 7 years ago
parent
48ec9d9559
commit
939b5c52f7
2 changed files with 10 additions and 1 deletions
Split View Show Diff Stats
  1. 6 1
      controllers/authController.js
  2. 4 0
      controllers/uploadController.js

+ 6 - 1
controllers/authController.js
View File 

@@ -15,6 +15,10 @@ authController.verify = async (req, res, next) => {
 
 
 	const user = await db.table('users').where('username', username).first();
 
 	if (!user) return res.json({ success: false, description: 'Username doesn\'t exist' });
 
+	if (user.enabled === false || user.enabled === 0) return res.json({
 
+		success: false,
 
+		description: 'This account has been disabled'
 
+	});
 
 
 	bcrypt.compare(password, user.password, (err, result) => {
 
 		if (err) {
 
@@ -56,7 +60,8 @@ authController.register = async (req, res, next) => {
 
 		await db.table('users').insert({
 
 			username: username,
 
 			password: hash,
 
-			token: token
 
+			token: token,
 
+			enabled: 1
 
 		});
 
 		return res.json({ success: true, token: token })
 
 	});

+ 4 - 0
controllers/uploadController.js
View File 

@@ -39,6 +39,10 @@ uploadsController.upload = async (req, res, next) => {
 
 
 	const token = req.headers.token || '';
 
 	const user = await db.table('users').where('token', token).first();
 
+	if (user.enabled === false || user.enabled === 0) return res.json({
 
+		success: false,
 
+		description: 'This account has been disabled'
 
+	});
 
 	const albumid = req.headers.albumid || req.params.albumid;
 
 
 	if (albumid && user) {