f.weber/homebrewery
0
0
Fork 0
mirror of https://github.com/naturalcrit/homebrewery.git synced 2025-12-24 14:12:40 +00:00
Code Wiki Activity

fix check client version middleware to stop checking outside calls

Browse Source
This commit is contained in:
Víctor Losada Hernández
2024-12-14 22:30:24 +01:00
parent b26526a2f1
commit afc92c4545
1 changed files with 16 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
server/middleware/check-client-version.js
View File

@@ -1,16 +1,22 @@
import packageJSON from '../../package.json' with { type: "json" };
const version = packageJSON.version;
//This should be only for internal calls, but right now prevents spam api calls, this should be done with a proper cors policy
export default (req, res, next) => {
const origin = req.get('Origin');
const sameSite = req.get('Host');
export default (req, res, next)=>{
const userVersion = req.get('Homebrewery-Version');
if (origin && origin !== `http://${sameSite}` && origin !== `https://${sameSite}`) {
return next(); // Skip version check if the request is from another site, like naturalcrit.com
}
if(userVersion != version) {
return res.status(412).send({
message : `Client version ${userVersion} is out of date. Please save your changes elsewhere and refresh to pick up client version ${version}.`
});
}
const userVersion = req.get('Homebrewery-Version');
const version = packageJSON.version;
next();
if (userVersion !== version) {
return res.status(412).send({
message: `Client version ${userVersion} is out of date. Please save your changes elsewhere and refresh to pick up client version ${version}.`
});
}
next();
};