regalijan/car-crushers-portal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add auth check to game appeal metadata endpoint

Browse Source
This commit is contained in:
regalijan 2023-10-19 16:51:04 -04:00
parent f135368dc4
commit f51742e64d
Signed by: regalijan
GPG Key ID: 5D4196DA269EF520
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
functions/api/game-appeals/metadata.ts
View File

@ -2,6 +2,12 @@ import { jsonError, jsonResponse } from "../../common.js";
import precheck from "./precheck.js"; import precheck from "./precheck.js";
export async function onRequestPost(context: RequestContext) { export async function onRequestPost(context: RequestContext) {
if (
context.request.headers.get("authorization") !==
`Bearer ${context.env.ROBLOX_APPEALS_TOKEN}`
)
return jsonError("Unauthorized", 401);
const { id }: { id: any } = context.data.body; const { id }: { id: any } = context.data.body;
if (typeof id !== "number") return jsonError("Invalid user id", 400); if (typeof id !== "number") return jsonError("Invalid user id", 400);