| | |
|---|
| | | logger: true |
|---|
| | | }) |
|---|
| | | const db = require("./lib/db") |
|---|
| | | const settings = require("./settings") |
|---|
| | | |
|---|
| | | ///////////////////////////////////////////////////////////////////////// |
|---|
| | | |
|---|
| | | // AUTH |
|---|
| | | fastify.addHook("onRequest", async (req, res) => { |
|---|
| | | const token = req.query.token |
|---|
| | | if (token !== settings.authtoken) { |
|---|
| | | console.error("# AUTH ERROR #", token) |
|---|
| | | await promiseDelay(500) // delay response to avoid denial of service attacks |
|---|
| | | res.code(403) |
|---|
| | | return res.send({status: "error", error: "access denied"}) |
|---|
| | | } |
|---|
| | | else {} |
|---|
| | | }) |
|---|
| | | |
|---|
| | | fastify |
|---|
| | | .get('/api/users', async function (req, res) { |
|---|
| | |
|---|
| | | } |
|---|
| | | // Server is now listening on ${address} |
|---|
| | | }) |
|---|
| | | |
|---|
| | | ///////////////////////////////////////////////////////////////////////// |
|---|
| | | |
|---|
| | | async function promiseDelay(ms) { |
|---|
| | | return new Promise(resolve => setTimeout(resolve, ms)) |
|---|
| | | } |
|---|
