banana/definma-api
Archived
2
Fork 0
Code Releases Activity

minor fixes

Browse Source
This commit is contained in:
VLE2FE
2020-07-30 11:36:03 +02:00
parent 149a0aec6d
commit 4f7eb6f92f
4 changed files with 91 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/index.ts
View File

@@ -45,6 +45,7 @@ app.use(helmet(defaultHeaderConfig));
app.use('/api-doc', helmet.contentSecurityPolicy({
...defaultHeaderConfig,
directives: {
defaultSrc: [`'none'`],
scriptSrc: [`'self'`],
connectSrc: [`'self'`],
styleSrc: [`'self'`, `'unsafe-inline'`],

1
src/routes/user.ts
View File

@@ -65,6 +65,7 @@ router.put('/user:username([/](?!key|new).?*|/?)', async (req, res, next) => {
});
});
// TODO: only possible if no data is linked to user, otherwise change status, etc.
router.delete('/user:username([/](?!key|new).?*|/?)', (req, res, next) => { // this path matches /user, /user/ and /user/xxx, but not /user/key or user/new. See https://forbeslindesay.github.io/express-route-tester/ for the generated regex
if (!req.auth(res, ['read', 'write', 'maintain', 'dev', 'admin'], 'basic')) return;