feat: support user whitelist

node-honeycomb · Jul 9, 2024 · d23d372 · d23d372
1 parent be3260a
commit d23d372
Show file tree

Hide file tree

Showing 2 changed files with 16 additions and 0 deletions.
diff --git a/config/config_default.js b/config/config_default.js
@@ -23,11 +23,21 @@ module.exports = {
    * @type {Object} 发布的包的存储设置，支持oss、minio
    */
   storage: null,
+  /**
+   * 白名单，如需限制用户访问，设置这个列表
+   *  {"username": true, "username2": true}
+   */
+  userWhiteList: null,
   /**
    * 设置是否开启通过Oss来实现publish的上传功能
    * @type {Boolean}
    */
   enableOssPublish: false,
+  /**
+   * 开启cluster检查严格模式，fixCluster的时候会检查clusterCode是否相等
+   * 注意 honeycomb-server侧记得配置 config.cluster=${clusterCode}，否则机器会被踢出集群
+   */
+  clusterCheckStrict: false,
   logs: {},
   salt: null,
   /**

diff --git a/middleware/auth.js b/middleware/auth.js
@@ -22,6 +22,12 @@ module.exports = function (app, options) {
     }
     // if already login
     if (req.session && req.session.username) {
+      if (config.userWhiteList && !config.userWhiteList[req.session.username]) {
+        return res.status(403).json({
+          code: 'FORBIDDEN',
+          message: 'Forbidden'
+        });
+      }
       if (path === '/logout') {
         req.session.user = null;
         req.session = null;