feat: disable auth (#59)

2025-07-06 04:51:44 -07:00 · 2022-05-23 22:09:30 -04:00 · 2022-05-23 22:09:30 -04:00 · e7fb4d0aa8
commit e7fb4d0aa8
parent 30069a699f
3 changed files with 33 additions and 8 deletions
--- a/backend/routes/auth.js
+++ b/backend/routes/auth.js
@ -3,6 +3,14 @@ const router = express.Router();

 const auth = require("../services/auth");

+router.get("/login", async function (req, res) {
+  if (process.env.ZU_DISABLE_AUTH === "true") {
+    res.send({ enabled: false });
+  } else {
+    res.send({ enabled: true });
+  }
+});
+
 router.post("/login", async function (req, res) {
  if (req.body.username && req.body.password) {
    auth.authorize(req.body.username, req.body.password, function (err, user) {
--- a/backend/services/auth.js
+++ b/backend/services/auth.js
@ -20,14 +20,18 @@ async function authorize(username, password, callback) {

 exports.isAuthorized = isAuthorized;
 async function isAuthorized(req, res, next) {
-  if (req.token) {
-    const user = await db.get("users").find({ token: req.token }).value();
-    if (user) {
-      next();
-    } else {
-      res.status(403).send({ error: "Invalid token" });
-    }
+  if (process.env.ZU_DISABLE_AUTH === "true") {
+    next();
  } else {
-    res.status(401).send({ error: "Specify token" });
+    if (req.token) {
+      const user = await db.get("users").find({ token: req.token }).value();
+      if (user) {
+        next();
+      } else {
+        res.status(403).send({ error: "Invalid token" });
+      }
+    } else {
+      res.status(401).send({ error: "Specify token" });
+    }
  }
 }