topuser
/
nuxt4-demo
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

fix(config): mask smtp password in global put response 

Prevent commentSmtpPass from being echoed in PUT responses while preserving existing response behavior for all other config keys.

Made-with: Cursor
main
npmrun 3 weeks ago
parent
29385f0ebe
commit
a8a11cdd89
1 changed files with 8 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 9
      server/api/config/global.put.ts

9
server/api/config/global.put.ts
View File

@ -12,6 +12,13 @@ type UpdateGlobalConfigBody = {
value: unknown;
};
function toSafeResponseValue(key: string, value: unknown) {
if (key === "commentSmtpPass") {
return "";
}
return value;
}
export default defineWrappedResponseHandler(async (event) => {
try {
await requireAdmin(event);
@ -23,7 +30,7 @@ export default defineWrappedResponseHandler(async (event) => {
const value = await event.context.config.getGlobal(key);
return R.success({
key,
value,
value: toSafeResponseValue(key, value),
});
} catch (err) {
throw toPublicConfigError(err);

Write Preview
Loading…
Cancel
Save