github/directus
1
0
Fork 0
mirror of https://github.com/directus/directus.git synced 2026-01-23 03:08:08 -05:00
Code Issues Packages Projects Releases Wiki Activity

Fix ip check for public role

Browse Source
This commit is contained in:
rijkvanzanten
2020-10-13 16:48:32 -04:00
parent 324f6577b2
commit c50eb29e39
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
api/src/middleware/check-ip.ts
View File

@@ -9,7 +9,8 @@ export const checkIP: RequestHandler = asyncHandler(async (req, res, next) => {
.from('directus_roles')
.where({ id: req.accountability!.role })
.first();
const ipAllowlist = (role.ip_access || '').split(',').filter((ip: string) => ip);
const ipAllowlist = (role?.ip_access || '').split(',').filter((ip: string) => ip);
if (ipAllowlist.length > 0 && ipAllowlist.includes(req.accountability!.ip) === false)
throw new InvalidIPException();