github/umami
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Check for DISABLE_LOGIN on api route.

Browse Source
This commit is contained in:
Mike Cao
2023-08-02 11:56:42 -07:00
parent 253a46460b
commit 7b9c29e039
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
pages/api/auth/login.ts
View File

@@ -7,6 +7,7 @@ import {
checkPassword, checkPassword,
createSecureToken, createSecureToken,
methodNotAllowed, methodNotAllowed,
forbidden,
} from 'next-basics'; } from 'next-basics';
import redis from '@umami/redis-client'; import redis from '@umami/redis-client';
import { getUserByUsername } from 'queries'; import { getUserByUsername } from 'queries';
@@ -30,6 +31,10 @@ export default async (
req: NextApiRequestQueryBody<any, LoginRequestBody>, req: NextApiRequestQueryBody<any, LoginRequestBody>,
res: NextApiResponse<LoginResponse>, res: NextApiResponse<LoginResponse>,
) => { ) => {
if (process.env.DISABLE_LOGIN) {
return forbidden(res);
}
if (req.method === 'POST') { if (req.method === 'POST') {
const { username, password } = req.body; const { username, password } = req.body;