Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-11-16 02:36:16 +01:00
Code Issues Packages Projects Releases Wiki Activity

feat: more work on topic thumbs refactor

Browse Source 
- addThumb and deleteThumb are now protected routes (duh)
- new getThumbs route GET /api/v3/topics/<tid>/thumbs
- Updated `assert.path` middleware to better handle if relative paths are received with upload_url
- Slight refactor of thumbs lib to use validator to differentiate between tid and UUID
This commit is contained in:
Julian Lam
2020-12-03 15:04:23 -05:00
parent 43dc3e3e48
commit 90497e3ef5
4 changed files with 33 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/middleware/assert.js
View File

@@ -58,6 +58,11 @@ Assert.path = helpers.try(async (req, res, next) => {
req.body.path = new URL(req.body.path).pathname;
}
// Strip upload_url if found
if (req.body.path.startsWith(nconf.get('upload_url'))) {
req.body.path = req.body.path.slice(nconf.get('upload_url').length);
}
const pathToFile = path.join(nconf.get('upload_path'), req.body.path);
res.locals.cleanedPath = pathToFile;