Protect logging backend.

2016-05-24 19:40:02 +02:00 · 2016-05-24 19:40:02 +02:00 · 921052dff5
commit 921052dff5
parent 09b01f5ccf
5 changed files with 32 additions and 1 deletions
--- a/server/app.js
+++ b/server/app.js
@ -2,11 +2,27 @@

 angular.module('ffffng').factory('app', function (fs, config, _) {
    var express = require('express');
+    var auth = require('http-auth');
    var bodyParser = require('body-parser');
    var compress = require('compression');

    var app = express();

+    // urls beneath /internal are protected
+    var internalAuth = auth.basic(
+        {
+            realm: "Knotenformular - Intern"
+        },
+        function (username, password, callback) {
+            callback(
+                config.server.internal.active &&
+                username === config.server.internal.user &&
+                password === config.server.internal.password
+            );
+        }
+    );
+    app.use('/internal', auth.connect(internalAuth));
+
    app.use(bodyParser.json());

    var clientDir = __dirname + '/../client';
--- a/server/config.js
+++ b/server/config.js
@ -17,6 +17,12 @@ var defaultConfig = {
            logRequests: false
        },

+        internal: {
+            active: false,
+            user: 'admin',
+            password: 'secret'
+        },
+
        email: {
            from: 'Freifunk Knotenformular <no-reply@musterstadt.freifunk.net>',

--- a/server/logger.js
+++ b/server/logger.js
@ -30,7 +30,9 @@ angular.module('ffffng').factory('Logger', function (app) {
    if (config.server.logging.logRequests) {
        app.use(scribe.express.logger());
    }
-    app.use('/internal/logs', scribe.webPanel());
+    if (config.server.internal.active) {
+        app.use('/internal/logs', scribe.webPanel());
+    }

    return process.console;
 });