update login
This commit is contained in:
@@ -13,7 +13,7 @@ app.use(express.json({ limit: '10mb' }));
|
||||
|
||||
// Auth middleware for protected API routes
|
||||
function requireAuth(req, res, next) {
|
||||
const password = process.env.SHOWCASE_PASSWORD;
|
||||
const password = (process.env.SHOWCASE_PASSWORD || '').trim();
|
||||
if (!password) return next(); // not configured, skip
|
||||
|
||||
const auth = req.headers['authorization'] || '';
|
||||
|
||||
@@ -9,7 +9,7 @@ function makeToken(password) {
|
||||
|
||||
router.post('/login', (req, res) => {
|
||||
const { password } = req.body;
|
||||
const expected = process.env.SHOWCASE_PASSWORD;
|
||||
const expected = (process.env.SHOWCASE_PASSWORD || '').trim();
|
||||
|
||||
if (!expected) {
|
||||
return res.status(500).json({ error: 'Server not configured' });
|
||||
|
||||
Reference in New Issue
Block a user