alydev/linkie
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

moved auth to kv

Browse source
This commit is contained in:
alyssadev 2023-09-17 13:34:03 +10:00
parent 8d7404fd85
commit 51441dfa8d
2 changed files with 20 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

29
src/index.js
View file

@ -12,16 +12,21 @@ function makeid(length) {
return result; return result;
} }
function checkAuth(request) { async function checkAuth(request) {
const auth = request.headers.get("Authorization"); const auth = request.headers.get("Authorization");
return auth === AUTH_KEY; const auth_check = await AUTH.get(auth)
console.log(auth, auth_check)
return Boolean(auth_check);
} }
function getHost(request) { function getHost(request) {
return request.headers.get("Host") return request.headers.get("Host")
} }
async function add(host,path,request) { async function add(request,host,path) {
const auth = await checkAuth(request)
if (!auth)
return new Response("Only GET requests allowed to unauthed users", {status:403});
if (!request.headers.get("content-type")) if (!request.headers.get("content-type"))
return new Response("No URL provided", {status:400}) return new Response("No URL provided", {status:400})
const data = await request.formData() const data = await request.formData()
@ -50,14 +55,18 @@ async function add(host,path,request) {
return new Response(`https://${host}/${path}`, {status:201}) return new Response(`https://${host}/${path}`, {status:201})
} }
async function remove(host,path) { async function remove(request,host,path) {
const auth = await checkAuth(request)
if (!auth)
return new Response("Only GET requests allowed to unauthed users", {status:403});
if (!path) return new Response("No path provided",{status:400}) if (!path) return new Response("No path provided",{status:400})
path = path.toLowerCase() path = path.toLowerCase()
await KV.delete(path) await KV.delete(path)
return new Response(`DELETE https://${host}/${path}`, {status:200}) return new Response(`DELETE https://${host}/${path}`, {status:200})
} }
async function get(host,path,auth) { async function get(request,host,path) {
const auth = await checkAuth(request)
if (!path && auth) { if (!path && auth) {
const { keys } = await KV.list() const { keys } = await KV.list()
let paths = "" let paths = ""
@ -79,16 +88,12 @@ async function handleRequest(request) {
case "PUT": case "PUT":
case "POST": case "POST":
case "PATCH": case "PATCH":
if (!checkAuth(request)) return add(request,host,path)
return new Response("Only GET requests allowed to unauthed users", {status:403});
return add(host,path,request)
case "DELETE": case "DELETE":
if (!checkAuth(request)) return remove(request,host,path)
return new Response("Only GET requests allowed to unauthed users", {status:403});
return remove(host,path)
case "HEAD": case "HEAD":
case "GET": case "GET":
return get(host,path,checkAuth(request)) return get(request,host,path)
default: default:
return new Response("Method not allowed", {status:405}) return new Response("Method not allowed", {status:405})
} }

5
wrangler.toml
View file

@ -1,12 +1,13 @@
name = "linkie" name = "linkie"
main = "src/index.js" main = "src/index.js"
workers_dev = true # used for test.py workers_dev = true # used for test.py
compatibility_date = "2023-09-14" compatibility_date = "2023-09-04"
routes = [ routes = [
{ pattern = "s.aly.pet", custom_domain = true } { pattern = "s.aly.pet", custom_domain = true }
] ]
kv_namespaces = [ kv_namespaces = [
{ binding = "KV", id = "7214e776a3da4ccd9f9fe5b6c3d3f781" } { binding = "KV", id = "7214e776a3da4ccd9f9fe5b6c3d3f781", preview_id = "a36f8dde95cb46d988812e051729fbe8" },
{ binding = "AUTH", id = "6cea477e20a44fb5933482255fc77447", preview_id = "1cd25bb358194925ad1ba2cf163c80c0" }
] ]
[vars] [vars]
REDIR_URL = "https://aly-smith.carrd.co/" REDIR_URL = "https://aly-smith.carrd.co/"