river-of-ebooks/api/policies/keyAuth.js

module.exports = async function (req, res, next) {
  const key = req.param('key') || req.headers['roe-key']
  const secret = req.param('secret') || req.headers['roe-secret']

  const pk = await PublishKey.findOne({ appid: key, secret })
  if (pk) {
    if (pk.whitelisted) return next()
    else res.status(403).json({ error: 'Your key has not been whitelisted yet. Please contact the site operator.' })
  }

  res.status(403).json({ error: 'Invalid publishing key.' })
}
add page, model, controller, and policy for publish keys 2019-02-03 19:16:02 +00:00			`module.exports = async function (req, res, next) {`
add admin pages for whitelist management 2019-02-24 21:27:24 +00:00			`const key = req.param('key') \|\| req.headers['roe-key']`
			`const secret = req.param('secret') \|\| req.headers['roe-secret']`
add page, model, controller, and policy for publish keys 2019-02-03 19:16:02 +00:00
add admin pages for whitelist management 2019-02-24 21:27:24 +00:00			`const pk = await PublishKey.findOne({ appid: key, secret })`
			`if (pk) {`
			`if (pk.whitelisted) return next()`
			`else res.status(403).json({ error: 'Your key has not been whitelisted yet. Please contact the site operator.' })`
add page, model, controller, and policy for publish keys 2019-02-03 19:16:02 +00:00			`}`

			`res.status(403).json({ error: 'Invalid publishing key.' })`
			`}`