aboutsummaryrefslogtreecommitdiff
path: root/server
diff options
context:
space:
mode:
Diffstat (limited to 'server')
-rw-r--r--server/Cargo.toml3
-rw-r--r--server/src/main.rs4
-rw-r--r--server/src/routes/stream.rs3
-rw-r--r--server/src/routes/ui/account/session.rs5
4 files changed, 14 insertions, 1 deletions
diff --git a/server/Cargo.toml b/server/Cargo.toml
index 458f48d..a3214fa 100644
--- a/server/Cargo.toml
+++ b/server/Cargo.toml
@@ -26,3 +26,6 @@ markup = "0.13.1"
sled = "0.34.7"
typed-sled = "0.2.3"
+
+[features]
+bypass-auth = [] \ No newline at end of file
diff --git a/server/src/main.rs b/server/src/main.rs
index 3d08d24..00543ce 100644
--- a/server/src/main.rs
+++ b/server/src/main.rs
@@ -26,6 +26,10 @@ fn rocket() -> _ {
.filter_level(log::LevelFilter::Info)
.parse_env("LOG")
.init();
+
+ #[cfg(feature = "bypass-auth")]
+ warn!("authentification bypass enabled");
+
let remuxer = RemuxerContext::new();
let library = Library::open(&CONF.library_path).unwrap();
let database = Database::open(&CONF.database_path).unwrap();
diff --git a/server/src/routes/stream.rs b/server/src/routes/stream.rs
index eb7bc13..469ad07 100644
--- a/server/src/routes/stream.rs
+++ b/server/src/routes/stream.rs
@@ -3,7 +3,7 @@
which is licensed under the GNU Affero General Public License (version 3); see /COPYING.
Copyright (C) 2023 metamuffin <metamuffin.org>
*/
-use super::ui::error::MyError;
+use super::ui::{account::session::Session, error::MyError};
use crate::library::Library;
use anyhow::{anyhow, Context, Result};
use jellyremuxer::RemuxerContext;
@@ -37,6 +37,7 @@ pub fn stream_uri(path: &PathBuf, tracks: &Vec<u64>, webm: bool) -> String {
#[get("/stream/<path..>?<tracks>&<webm>")]
pub fn r_stream(
+ _sess: Session,
path: PathBuf,
webm: Option<bool>,
tracks: String,
diff --git a/server/src/routes/ui/account/session.rs b/server/src/routes/ui/account/session.rs
index ed40d83..3457d41 100644
--- a/server/src/routes/ui/account/session.rs
+++ b/server/src/routes/ui/account/session.rs
@@ -6,6 +6,7 @@
use crate::{
database::{Database, User},
routes::ui::error::MyError,
+ CONF,
};
use anyhow::anyhow;
use rocket::{
@@ -20,11 +21,15 @@ pub struct Session {
impl Session {
pub async fn from_request_ut(req: &Request<'_>) -> Result<Self, MyError> {
+ #[cfg(not(feature = "bypass-auth"))]
let cookie = req
.cookies()
.get_private("user")
.ok_or(anyhow!("login required"))?;
+ #[cfg(not(feature = "bypass-auth"))]
let username = cookie.value();
+ #[cfg(feature = "bypass-auth")]
+ let username = CONF.admin_username.to_string();
let db = req.guard::<&State<Database>>().await.unwrap();
let user = db
generated by cgit v1.2.3-70-g09d2 (git 2.51.0) at 2025-10-08 13:29:53 +0000