mirror of
https://github.com/Jermolene/TiddlyWiki5
synced 2025-01-24 16:06:58 +00:00
6a7612ddf8
* mws authentication * add more tests and permission checkers * add logic to ensure that only authenticated users' requests are handled * add custom login page * Implement user authentication as well as session handling * work on user operations authorization * add middleware to route handlers for bags & tiddlers routes * add feature that only returns the tiddlers and bags which the user has permission to access on index page * refactor auth routes & added user management page * fix Ci Test failure issue * fix users list page, add manage roles page * add commands and scripts to create new user & assign roles and permissions * resolved ci-test failure * add ACL permissions to bags & tiddlers on creation * fix comments and access control list bug * fix indentation issues * working on user profile edit * remove list users command & added support for database in server options * implement user profile update and password change feature * update plugin readme * implement command which triggers protected mode on the server * revert server-wide auth flag. Implement selective authorization * ACL management feature * Complete Access control list implementation * Added support to manage users' assigned role by admin * fix comments * fix comment
64 lines
1.9 KiB
JavaScript
64 lines
1.9 KiB
JavaScript
/*\
|
|
title: $:/plugins/tiddlywiki/multiwikiserver/routes/handlers/get-bag.js
|
|
type: application/javascript
|
|
module-type: mws-route
|
|
|
|
GET /bags/:bag_name/
|
|
GET /bags/:bag_name
|
|
|
|
\*/
|
|
(function () {
|
|
|
|
/*jslint node: true, browser: true */
|
|
/*global $tw: false */
|
|
"use strict";
|
|
|
|
exports.method = "GET";
|
|
|
|
exports.path = /^\/bags\/([^\/]+)(\/?)$/;
|
|
|
|
exports.useACL = true;
|
|
|
|
exports.entityName = "bag"
|
|
|
|
exports.handler = function (request, response, state) {
|
|
// Redirect if there is no trailing slash. We do this so that the relative URL specified in the upload form works correctly
|
|
if (state.params[1] !== "/") {
|
|
state.redirect(301, state.urlInfo.path + "/");
|
|
return;
|
|
}
|
|
// Get the parameters
|
|
var bag_name = $tw.utils.decodeURIComponentSafe(state.params[0]),
|
|
bagTiddlers = bag_name && $tw.mws.store.getBagTiddlers(bag_name);
|
|
if (bag_name && bagTiddlers) {
|
|
// If application/json is requested then this is an API request, and gets the response in JSON
|
|
if (request.headers.accept && request.headers.accept.indexOf("application/json") !== -1) {
|
|
state.sendResponse(200, { "Content-Type": "application/json" }, JSON.stringify(bagTiddlers), "utf8");
|
|
} else {
|
|
if (!response.headersSent) {
|
|
// This is not a JSON API request, we should return the raw tiddler content
|
|
response.writeHead(200, "OK", {
|
|
"Content-Type": "text/html"
|
|
});
|
|
var html = $tw.mws.store.adminWiki.renderTiddler("text/plain", "$:/plugins/tiddlywiki/multiwikiserver/templates/page", {
|
|
variables: {
|
|
"page-content": "$:/plugins/tiddlywiki/multiwikiserver/templates/get-bag",
|
|
"bag-name": bag_name,
|
|
"bag-titles": JSON.stringify(bagTiddlers.map(bagTiddler => bagTiddler.title)),
|
|
"bag-tiddlers": JSON.stringify(bagTiddlers)
|
|
}
|
|
});
|
|
response.write(html);
|
|
response.end();
|
|
}
|
|
}
|
|
} else {
|
|
if (!response.headersSent) {
|
|
response.writeHead(404);
|
|
response.end();
|
|
}
|
|
}
|
|
};
|
|
|
|
}());
|