Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-11-14 01:45:47 +01:00
Code Issues Packages Projects Releases Wiki Activity

changing admin API calls to return 404 if unauthenticated, and redirect user to login for regular URL. closes #1885

Browse Source
This commit is contained in:
Julian Lam
2014-08-31 22:43:00 -04:00
parent 7572c9a803
commit 08c9cbdf70
4 changed files with 8 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/middleware/admin.js
View File

@@ -16,7 +16,9 @@ var app,
middleware.isAdmin = function(req, res, next) {
if (!req.user) {
return res.redirect(nconf.get('relative_path') + '/login?next=admin');
return res.json(404, {
error: 'not-found'
});
}
user.isAdministrator((req.user && req.user.uid) ? req.user.uid : 0, function (err, isAdmin) {