watson/umami
1
0
Fork 0
mirror of https://github.com/umami-software/umami.git synced 2025-12-08 05:12:36 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 5

Check for DISABLE_LOGIN on api route.

Browse source
This commit is contained in:
Mike Cao 2023-08-02 11:56:42 -07:00
parent 253a46460b
commit 7b9c29e039
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
pages/api/auth/login.ts
View file

@ -7,6 +7,7 @@ import {
checkPassword, checkPassword,
createSecureToken, createSecureToken,
methodNotAllowed, methodNotAllowed,
forbidden,
} from 'next-basics'; } from 'next-basics';
import redis from '@umami/redis-client'; import redis from '@umami/redis-client';
import { getUserByUsername } from 'queries'; import { getUserByUsername } from 'queries';
@ -30,6 +31,10 @@ export default async (
req: NextApiRequestQueryBody<any, LoginRequestBody>, req: NextApiRequestQueryBody<any, LoginRequestBody>,
res: NextApiResponse<LoginResponse>, res: NextApiResponse<LoginResponse>,
) => { ) => {
if (process.env.DISABLE_LOGIN) {
return forbidden(res);
}
if (req.method === 'POST') { if (req.method === 'POST') {
const { username, password } = req.body; const { username, password } = req.body;