opensource/RSSHub
1
0
Fork 0
mirror of https://github.com/DIYgod/RSSHub.git synced 2025-12-03 02:28:23 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
c47b29c5096da23b60bcc4e69dadace4e12ffed5
RSSHub/lib/middleware/access-control.js
Sukka 6e3b58ed1d refactor: avoid promise overhead (#8028)
2021-08-16 11:45:53 -07:00

56 lines
1.6 KiB
JavaScript
Raw Blame History

const config = require('@/config').value;
const md5 = require('@/utils/md5');
const isLocalhost = require('is-localhost-ip');
const reject = (ctx) => {
ctx.response.status = 403;
throw Error('Authentication failed. Access denied.');
};
module.exports = async (ctx, next) => {
const ip = ctx.ips[0] || ctx.ip;
const requestPath = ctx.request.path;
const requestUA = ctx.request.header['user-agent'];
const accessKey = ctx.query.key;
const accessCode = ctx.query.code;
const isControlled = config.accessKey || config.whitelist || config.blacklist;
const allowLocalhost = config.allowLocalhost && (await isLocalhost(ip));
const grant = async () => {
if (ctx.response.status !== 403) {
await next();
}
};
if (requestPath === '/' || requestPath === '/robots.txt') {
await next();
} else {
if (!isControlled || allowLocalhost) {
return grant();
}
if (config.accessKey) {
if (config.accessKey === accessKey || accessCode === md5(requestPath + config.accessKey)) {
return grant();
}
}
if (config.whitelist) {
if (config.whitelist.find((white) => ip.includes(white) || requestPath.includes(white) || requestUA.includes(white))) {
return grant();
}
}
if (config.blacklist) {
if (!config.blacklist.find((black) => ip.includes(black) || requestPath.includes(black) || requestUA.includes(black))) {
return grant();
}
}
reject(ctx);
}
};
Reference in New Issue View Git Blame Copy Permalink