Verum/pg-adminus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

333332

Browse Source
This commit is contained in:
Verum
2026-03-19 15:25:55 +07:00
parent 6cb4f53410
commit 64711bc54a
2 changed files with 29 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
server.js
View File

@@ -16,6 +16,13 @@ app.use(cors());
app.use(express.json()); app.use(express.json());
app.use(express.static(path.join(__dirname, 'public'))); app.use(express.static(path.join(__dirname, 'public')));
function requireAuth(req, res, next) {
if (!req.session || !req.session.authenticated) {
return res.status(401).json({ error: 'Unauthorized' });
}
next();
}
// Session configuration // Session configuration
app.use(session({ app.use(session({
secret: process.env.SESSION_SECRET || 'default-secret-change-this', secret: process.env.SESSION_SECRET || 'default-secret-change-this',

22
src/middleware/auth.js Normal file
View File

@@ -0,0 +1,22 @@
// Authentication middleware
function requireAuth(req, res, next) {
if (!req.session || !req.session.authenticated) {
return res.status(401).json({ error: 'Unauthorized' });
}
next();
}
// Role-based permissions
function getRolePermissions(role) {
const permissions = {
admin: ['read', 'write', 'delete', 'admin'],
editor: ['read', 'write'],
viewer: ['read']
};
return permissions[role] || permissions.viewer;
}
module.exports = {
requireAuth,
getRolePermissions
};