From ca2fe6ecc5142115ba163875ccce2d0947ee50dc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Isma=C3=ABl=20Bouya?= Date: Tue, 5 May 2020 01:18:19 +0200 Subject: Make configuration not editable --- server.js | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/server.js b/server.js index bee74c7..c17fcb8 100755 --- a/server.js +++ b/server.js @@ -38,6 +38,7 @@ function getSettings(req, res, next) { } function setSettings(req, res, next) { + return next(new HttpError(400, 'not editable')); if (typeof req.body.folderListingEnabled === 'undefined') return next(new HttpError(400, 'missing folderListingEnabled boolean')); config.folderListingEnabled = !!req.body.folderListingEnabled; @@ -58,7 +59,7 @@ try { else console.log(`Cannot load config file ${CONFIG_FILE}`, e); } -if (typeof config.folderListingEnabled === 'undefined') config.folderListingEnabled = true; +if (typeof config.folderListingEnabled === 'undefined') config.folderListingEnabled = false; function isRoot(p) { return path.join(ROOT_FOLDER, p) === path.join(ROOT_FOLDER, '/'); @@ -150,12 +151,10 @@ app.use('/zip', sendArchive("zip")); app.use('/tar', sendArchive("tar")); app.use('/', express.static(ROOT_FOLDER)); app.use('/', function welcomePage(req, res, next) { - if (config.folderListingEnabled || req.path !== '/') return next(); + if (config.folderListingEnabled || !isRoot(req.path)) return next(); res.status(200).sendFile(path.join(__dirname, '/frontend/welcome.html')); }); app.use('/', function (req, res) { - if (!config.folderListingEnabled) return res.status(404).sendFile(__dirname + '/frontend/404.html'); - if (!fs.existsSync(path.join(ROOT_FOLDER, req.path))) return res.status(404).sendFile(__dirname + '/frontend/404.html'); res.status(200).sendFile(__dirname + '/frontend/public.html'); -- cgit v1.2.3