mkrieger/Wachalarm-IP-Web
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Funktion für Admin-Prüfung erweitert

Browse Source
This commit is contained in:
Richter 2019-05-13 10:40:29 +02:00
parent b6e1f514be
commit 278f7258b7
1 changed files with 14 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
server/auth.js
View File

@ -100,8 +100,9 @@ module.exports = function(app, app_cfg, db, async, bcrypt, passport, io) {
}; };
function ensureAdmin(req, res, next) { function ensureAdmin(req, res, next) {
if (req.isAuthenticated()) {
db.get('SELECT permissions FROM waip_users WHERE id = ?', req.user.id, function(err, row) { db.get('SELECT permissions FROM waip_users WHERE id = ?', req.user.id, function(err, row) {
if ((req.isAuthenticated()) && (row.permissions == "admin")) { if (row.permissions == "admin") {
// req.user is available for use here // req.user is available for use here
return next(); return next();
}; };
@ -109,6 +110,10 @@ module.exports = function(app, app_cfg, db, async, bcrypt, passport, io) {
err.status = 401; err.status = 401;
next(err); next(err);
}); });
// denied. redirect to login
var err = new Error('Sie sind nicht angemeldet!');
err.status = 401;
next(err);
}; };
function createUser(req, res) { function createUser(req, res) {