Matrix-Mirrors/matrix-dimension
1
0
Fork 0
mirror of https://github.com/turt2live/matrix-dimension.git synced 2024-07-08 12:01:48 +00:00
Code Issues Packages Projects Releases Wiki Activity

Disable admin routes from policy checks

Browse Source
This commit is contained in:
Travis Ralston 2019-07-10 18:12:23 -06:00
parent 147d8a18ae
commit ae42d673d7
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/api/security/MSCSecurity.ts
View File

@ -15,6 +15,7 @@ export const ROLE_MSC_USER = "ROLE_MSC_USER";
export const ROLE_MSC_ADMIN = "ROLE_MSC_ADMIN";
const TERMS_IGNORED_ROUTES = [
{method: "*", path: "/api/v1/dimension/admin/"},
{method: "GET", path: "/_matrix/integrations/v1/terms"},
{method: "POST", path: "/_matrix/integrations/v1/terms"},
{method: "POST", path: "/_matrix/integrations/v1/register"},
@ -61,6 +62,10 @@ export default class MSCSecurity implements ServiceAuthenticator {
let needTerms = true;
if (req.method !== "OPTIONS") {
for (const route of TERMS_IGNORED_ROUTES) {
if (route.method === "*" && req.path.startsWith(route.path)) {
needTerms = false;
break;
}
if (route.method === req.method && route.path === req.path) {
needTerms = false;
break;