hyperzlib
/
nodebb
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

closes #1972

Browse Source
v1.18.x
barisusakli 9 years ago
parent 6685fafe6b
commit 2e0763b0a8
1 changed files with 23 additions and 13 deletions
Show Stats Download Patch File Download Diff File

36
src/middleware/middleware.js
Unescape Escape View File

@ -194,19 +194,29 @@ middleware.isAdmin = function(req, res, next) {
} }
if (isAdmin) { if (isAdmin) {
var loginTime = req.session.meta ? req.session.meta.datetime : 0; user.hasPassword(req.uid, function(err, hasPassword) {
if (loginTime && parseInt(loginTime, 10) > Date.now() - 3600000) { if (err) {
return next(); return next(err);
} }
req.session.returnTo = nconf.get('relative_path') + req.path.replace(/^\/api/, ''); if (!hasPassword) {
req.session.forceLogin = 1; return next();
if (res.locals.isAPI) { }
res.status(401).json({});
} else { var loginTime = req.session.meta ? req.session.meta.datetime : 0;
res.redirect('/login'); if (loginTime && parseInt(loginTime, 10) > Date.now() - 3600000) {
} return next();
return; }
req.session.returnTo = nconf.get('relative_path') + req.path.replace(/^\/api/, '');
req.session.forceLogin = 1;
if (res.locals.isAPI) {
res.status(401).json({});
} else {
res.redirect('/login');
}
return;
});
} }
if (res.locals.isAPI) { if (res.locals.isAPI) {

Write Preview
Loading…
Cancel
Save