m/umami
1
0
Fork 0
mirror of https://github.com/kremalicious/umami.git synced 2025-02-14 21:10:34 +01:00
Code Issues Packages Projects Releases Wiki Activity

Added CORS to website API endpoints.

Browse Source
This commit is contained in:
Mike Cao 2022-04-04 00:33:20 -07:00
parent 136000c29d
commit bf5068d32a
7 changed files with 19 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pages/api/account/index.js
View File

@ -34,7 +34,7 @@ export default async (req, res) => {
return badRequest(res, 'Account already exists'); return badRequest(res, 'Account already exists');
} }
} }
console.log('------------------\n', data);
const updated = await updateAccount(user_id, data); const updated = await updateAccount(user_id, data);
return ok(res, updated); return ok(res, updated);

3
pages/api/website/[id]/active.js
View File

@ -1,9 +1,12 @@
import { getActiveVisitors } from 'lib/queries'; import { getActiveVisitors } from 'lib/queries';
import { methodNotAllowed, ok, unauthorized } from 'lib/response'; import { methodNotAllowed, ok, unauthorized } from 'lib/response';
import { allowQuery } from 'lib/auth'; import { allowQuery } from 'lib/auth';
import { useCors } from 'lib/middleware';
export default async (req, res) => { export default async (req, res) => {
if (req.method === 'GET') { if (req.method === 'GET') {
await useCors(req, res);
if (!(await allowQuery(req))) { if (!(await allowQuery(req))) {
return unauthorized(res); return unauthorized(res);
} }

3
pages/api/website/[id]/events.js
View File

@ -2,11 +2,14 @@ import moment from 'moment-timezone';
import { getEventMetrics } from 'lib/queries'; import { getEventMetrics } from 'lib/queries';
import { ok, badRequest, methodNotAllowed, unauthorized } from 'lib/response'; import { ok, badRequest, methodNotAllowed, unauthorized } from 'lib/response';
import { allowQuery } from 'lib/auth'; import { allowQuery } from 'lib/auth';
import { useCors } from 'lib/middleware';
const unitTypes = ['year', 'month', 'hour', 'day']; const unitTypes = ['year', 'month', 'hour', 'day'];
export default async (req, res) => { export default async (req, res) => {
if (req.method === 'GET') { if (req.method === 'GET') {
await useCors(req, res);
if (!(await allowQuery(req))) { if (!(await allowQuery(req))) {
return unauthorized(res); return unauthorized(res);
} }

3
pages/api/website/[id]/index.js
View File

@ -1,6 +1,7 @@
import { deleteWebsite, getWebsiteById } from 'lib/queries'; import { deleteWebsite, getWebsiteById } from 'lib/queries';
import { methodNotAllowed, ok, unauthorized } from 'lib/response'; import { methodNotAllowed, ok, unauthorized } from 'lib/response';
import { allowQuery } from 'lib/auth'; import { allowQuery } from 'lib/auth';
import { useCors } from 'lib/middleware';
export default async (req, res) => { export default async (req, res) => {
const { id } = req.query; const { id } = req.query;
@ -8,6 +9,8 @@ export default async (req, res) => {
const websiteId = +id; const websiteId = +id;
if (req.method === 'GET') { if (req.method === 'GET') {
await useCors(req, res);
if (!(await allowQuery(req))) { if (!(await allowQuery(req))) {
return unauthorized(res); return unauthorized(res);
} }

3
pages/api/website/[id]/metrics.js
View File

@ -1,6 +1,7 @@
import { getPageviewMetrics, getSessionMetrics, getWebsiteById } from 'lib/queries'; import { getPageviewMetrics, getSessionMetrics, getWebsiteById } from 'lib/queries';
import { ok, methodNotAllowed, unauthorized, badRequest } from 'lib/response'; import { ok, methodNotAllowed, unauthorized, badRequest } from 'lib/response';
import { allowQuery } from 'lib/auth'; import { allowQuery } from 'lib/auth';
import { useCors } from 'lib/middleware';
const sessionColumns = ['browser', 'os', 'device', 'country', 'language']; const sessionColumns = ['browser', 'os', 'device', 'country', 'language'];
const pageviewColumns = ['url', 'referrer']; const pageviewColumns = ['url', 'referrer'];
@ -26,6 +27,8 @@ function getColumn(type) {
export default async (req, res) => { export default async (req, res) => {
if (req.method === 'GET') { if (req.method === 'GET') {
await useCors(req, res);
if (!(await allowQuery(req))) { if (!(await allowQuery(req))) {
return unauthorized(res); return unauthorized(res);
} }

3
pages/api/website/[id]/pageviews.js
View File

@ -2,11 +2,14 @@ import moment from 'moment-timezone';
import { getPageviewStats } from 'lib/queries'; import { getPageviewStats } from 'lib/queries';
import { ok, badRequest, methodNotAllowed, unauthorized } from 'lib/response'; import { ok, badRequest, methodNotAllowed, unauthorized } from 'lib/response';
import { allowQuery } from 'lib/auth'; import { allowQuery } from 'lib/auth';
import { useCors } from 'lib/middleware';
const unitTypes = ['year', 'month', 'hour', 'day']; const unitTypes = ['year', 'month', 'hour', 'day'];
export default async (req, res) => { export default async (req, res) => {
if (req.method === 'GET') { if (req.method === 'GET') {
await useCors(req, res);
if (!(await allowQuery(req))) { if (!(await allowQuery(req))) {
return unauthorized(res); return unauthorized(res);
} }

3
pages/api/website/[id]/stats.js
View File

@ -1,9 +1,12 @@
import { getWebsiteStats } from 'lib/queries'; import { getWebsiteStats } from 'lib/queries';
import { methodNotAllowed, ok, unauthorized } from 'lib/response'; import { methodNotAllowed, ok, unauthorized } from 'lib/response';
import { allowQuery } from 'lib/auth'; import { allowQuery } from 'lib/auth';
import { useCors } from 'lib/middleware';
export default async (req, res) => { export default async (req, res) => {
if (req.method === 'GET') { if (req.method === 'GET') {
await useCors(req, res);
if (!(await allowQuery(req))) { if (!(await allowQuery(req))) {
return unauthorized(res); return unauthorized(res);
} }