ignite-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From sevdoki...@apache.org
Subject [1/2] incubator-ignite git commit: # IGNITE-843 Fix security issue.
Date Thu, 09 Jul 2015 11:24:45 GMT
Repository: incubator-ignite
Updated Branches:
  refs/heads/ignite-843 bea625984 -> 87be52723


# IGNITE-843 Fix security issue.


Project: http://git-wip-us.apache.org/repos/asf/incubator-ignite/repo
Commit: http://git-wip-us.apache.org/repos/asf/incubator-ignite/commit/62b1854e
Tree: http://git-wip-us.apache.org/repos/asf/incubator-ignite/tree/62b1854e
Diff: http://git-wip-us.apache.org/repos/asf/incubator-ignite/diff/62b1854e

Branch: refs/heads/ignite-843
Commit: 62b1854ee6381646d262423cf4b61a2dba071b5c
Parents: bea6259
Author: sevdokimov <sergey.evdokimov@jetbrains.com>
Authored: Thu Jul 9 14:23:01 2015 +0300
Committer: sevdokimov <sergey.evdokimov@jetbrains.com>
Committed: Thu Jul 9 14:23:01 2015 +0300

----------------------------------------------------------------------
 modules/web-control-center/nodejs/app.js | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/incubator-ignite/blob/62b1854e/modules/web-control-center/nodejs/app.js
----------------------------------------------------------------------
diff --git a/modules/web-control-center/nodejs/app.js b/modules/web-control-center/nodejs/app.js
index fe5b032..0086d10 100644
--- a/modules/web-control-center/nodejs/app.js
+++ b/modules/web-control-center/nodejs/app.js
@@ -92,7 +92,6 @@ var adminOnly = function(req, res, next) {
     req.isAuthenticated() && req.user.admin ? next() : res.sendStatus(403);
 };
 
-app.all('/admin/*', mustAuthenticated, adminOnly);
 app.all('/configuration/*', mustAuthenticated);
 
 for (var p in uiUtils) {
@@ -126,7 +125,7 @@ app.all('*', function(req, res, next) {
 });
 
 app.use('/', publicRoutes);
-app.use('/admin', adminRouter);
+app.use('/admin', mustAuthenticated, adminOnly, adminRouter);
 app.use('/', mustAuthenticated, profileRouter);
 
 app.use('/configuration/clusters', clustersRouter);


Mime
View raw message