mirror of
https://github.com/DIYgod/RSSHub.git
synced 2025-12-05 20:27:52 +08:00
55 lines
1.5 KiB
JavaScript
55 lines
1.5 KiB
JavaScript
const config = require('@/config').value;
|
|
const md5 = require('@/utils/md5');
|
|
const isLocalhost = require('is-localhost-ip');
|
|
|
|
const reject = (ctx) => {
|
|
ctx.response.status = 403;
|
|
|
|
throw Error('Authentication failed. Access denied.');
|
|
};
|
|
|
|
module.exports = async (ctx, next) => {
|
|
const ip = ctx.ips[0] || ctx.ip;
|
|
const requestPath = ctx.request.path;
|
|
const accessKey = ctx.query.key;
|
|
const accessCode = ctx.query.code;
|
|
|
|
const isControlled = config.accessKey || config.whitelist || config.blacklist;
|
|
|
|
const allowLocalhost = config.allowLocalhost && (await isLocalhost(ip));
|
|
|
|
const grant = async () => {
|
|
if (ctx.response.status !== 403) {
|
|
await next();
|
|
}
|
|
};
|
|
|
|
if (requestPath === '/' || requestPath === '/robots.txt') {
|
|
await next();
|
|
} else {
|
|
if (!isControlled || allowLocalhost) {
|
|
return await grant();
|
|
}
|
|
|
|
if (config.accessKey) {
|
|
if (config.accessKey === accessKey || accessCode === md5(requestPath + config.accessKey)) {
|
|
return await grant();
|
|
}
|
|
}
|
|
|
|
if (config.whitelist) {
|
|
if (config.whitelist.includes(ip) || config.whitelist.includes(requestPath)) {
|
|
return await grant();
|
|
}
|
|
}
|
|
|
|
if (config.blacklist) {
|
|
if (!(config.blacklist.includes(ip) || config.blacklist.includes(requestPath))) {
|
|
return await grant();
|
|
}
|
|
}
|
|
|
|
reject(ctx);
|
|
}
|
|
};
|