Talon/aidio-description
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix: allow static files without auth, only protect /api/* routes

Browse Source
This commit is contained in:
Talon
2026-05-13 17:03:03 +02:00
parent 7e3184d77c
commit 0b47d81c51
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/server/middleware/auth.ts
View File

@@ -4,7 +4,8 @@ const AUTH_USERNAME = process.env.SERVER_USERNAME || 'admin';
const AUTH_PASSWORD = process.env.SERVER_PASSWORD || 'aidio2024'; const AUTH_PASSWORD = process.env.SERVER_PASSWORD || 'aidio2024';
export function basicAuth(req: Request, res: Response, next: NextFunction): void { export function basicAuth(req: Request, res: Response, next: NextFunction): void {
if (req.path === '/api/auth/login' || req.path === '/api/auth/check') { // Allow login/check endpoints and all non-API routes (static files, HTML)
if (req.path === '/api/auth/login' || req.path === '/api/auth/check' || !req.path.startsWith('/api/')) {
next(); next();
return; return;
} }