Spacebar/server
1
0
Fork 0
mirror of https://github.com/spacebarchat/server.git synced 2024-11-06 19:02:33 +01:00
Code Issues Releases Activity

Merge pull request #556 from Thesourtimes/master

Browse Source 
(Finally) make a temporary fix for IP leak
This commit is contained in:
Kuna 2021-12-24 19:12:11 +00:00 committed by GitHub
commit a72d107bb5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 15 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
api/src/routes/guilds/#guild_id/bans.ts
View File

@ -6,9 +6,21 @@ import { getIpAdress, route } from "@fosscord/api";
export interface BanCreateSchema { export interface BanCreateSchema {
delete_message_days?: string; delete_message_days?: string;
reason?: string; reason?: string;
} };
export interface BanRegistrySchema {
id: string;
user_id: string;
guild_id: string;
executor_id: string;
ip?: string;
reason?: string | undefined;
};
const router: Router = Router(); const router: Router = Router();
/* TODO: Deleting the secrets is just a temporary go-around. Views should be implemented for both safety and better handling. */
router.get("/", route({ permission: "BAN_MEMBERS" }), async (req: Request, res: Response) => { router.get("/", route({ permission: "BAN_MEMBERS" }), async (req: Request, res: Response) => {
const { guild_id } = req.params; const { guild_id } = req.params;
@ -16,7 +28,7 @@ router.get("/", route({ permission: "BAN_MEMBERS" }), async (req: Request, res:
/* Filter secret from database registry.*/ /* Filter secret from database registry.*/
bans.forEach((registry) => { bans.forEach((registry: BanRegistrySchema) => {
delete registry.ip; delete registry.ip;
}); });
@ -27,7 +39,7 @@ router.get("/:user", route({ permission: "BAN_MEMBERS" }), async (req: Request,
const { guild_id } = req.params; const { guild_id } = req.params;
const user_id = req.params.ban; const user_id = req.params.ban;
let ban = await Ban.findOneOrFail({ guild_id: guild_id, user_id: user_id }); let ban = await Ban.findOneOrFail({ guild_id: guild_id, user_id: user_id }) as BanRegistrySchema;
/* Filter secret from registry. */ /* Filter secret from registry. */