Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-10-26 16:46:12 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix: crash when AP S2S call made to retrieve a remote user account (not allowed); now returning 404

Browse Source
This commit is contained in:
Julian Lam
2024-09-10 11:37:50 -04:00
parent 97edcf6a48
commit d42d3b1c39
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/middleware/assert.js
View File

@@ -29,8 +29,9 @@ Assert.user = helpers.try(async (req, res, next) => {
const uid = req.params.uid || res.locals.uid;
if (
((utils.isNumber(uid) || activitypub.helpers.isUri(uid)) && await user.exists(uid)) ||
(uid.indexOf('@') !== -1 && await user.existsBySlug(uid))
uid !== -2 && // exposeUid middleware was in chain (means route is local user only) and resolved to fediverse user
(((utils.isNumber(uid) || activitypub.helpers.isUri(uid)) && await user.exists(uid)) ||
(uid.indexOf('@') !== -1 && await user.existsBySlug(uid)))
) {
return next();
}