yujunjun/strapi
1
0
Fork 0
mirror of https://github.com/strapi/strapi.git synced 2025-07-18 14:32:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
strapi/lib/configuration/hooks/dashboard/policies/dashboardToken.js
pierreburgy a13ad7cf22 Dashboard token and config
2015-10-30 14:36:19 +01:00

24 lines
660 B
JavaScript
Raw Blame History

'use strict';
/**
* Policy used to check if the `dashboardToken` field is valid.
*
* @param next
*/
module.exports = function * (next) {
// Format dashboardToken variables.
const dashboardTokenParam = this.request.query.dashboardToken || this.request.body.dashboardToken;
const dashboardTokenConfig = strapi.config.dashboard && strapi.config.dashboard.token;
// Check dashboardToken for security purposes.
if (!dashboardTokenParam || !dashboardTokenConfig || dashboardTokenParam !== dashboardTokenConfig) {
this.status = 401;
this.body = {
message: 'dashboardToken parameter is invalid.'
};
} else {
yield next;
}
};
Reference in New Issue View Git Blame Copy Permalink