iDefineHD/TurboTrades
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

added ban redirect correctly
All checks were successful
Build Frontend / Build Frontend (push) Successful in 10s
Details

Browse Source
This commit is contained in:
iDefineHD
2026-01-11 03:45:47 +00:00
parent 5846541329
commit d794c5ad48
1 changed files with 30 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
middleware/auth.js
View File

@@ -105,25 +105,41 @@ export const authenticate = async (request, reply) => {
// Check if user is banned
if (user.ban && user.ban.banned) {
if (user.ban.expires && new Date(user.ban.expires) > new Date()) {
return reply.status(403).send({
error: "Forbidden",
message: "Your account is banned",
reason: user.ban.reason,
expires: user.ban.expires,
});
} else if (!user.ban.expires) {
return reply.status(403).send({
error: "Forbidden",
message: "Your account is permanently banned",
reason: user.ban.reason,
});
} else {
// Check if ban has expired
if (user.ban.expires && new Date(user.ban.expires) <= new Date()) {
// Ban expired, clear it
user.ban.banned = false;
user.ban.reason = null;
user.ban.expires = null;
await user.save();
} else {
// User is currently banned
// Allow access to /api/auth/me so frontend can get ban info and redirect
const url = request.url || "";
const routeUrl = request.routeOptions?.url || "";
const isAuthMeEndpoint =
url.includes("/auth/me") ||
routeUrl === "/me" ||
routeUrl.endsWith("/me");
if (!isAuthMeEndpoint) {
// Block access to all other endpoints
if (user.ban.expires) {
return reply.status(403).send({
error: "Forbidden",
message: "Your account is banned",
reason: user.ban.reason,
expires: user.ban.expires,
});
} else {
return reply.status(403).send({
error: "Forbidden",
message: "Your account is permanently banned",
reason: user.ban.reason,
});
}
}
// If it's /api/auth/me, continue and attach user with ban info
}
}