Ryan/drop
1
0
Fork 0
mirror of https://github.com/Drop-OSS/drop.git synced 2025-11-16 01:31:19 +10:00
Code Issues Packages Projects Releases Wiki Activity

feat(acls): refactor & acl descriptions

Browse Source
This commit is contained in:
DecDuck
2025-02-07 17:26:23 +11:00
parent d4dd259b5f
commit ce8887528f
23 changed files with 291 additions and 253 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
server/internal/clients/ca.ts
View File

@ -1,6 +1,7 @@
import path from "path";
import fs from "fs";
import droplet from "@drop/droplet";
import { CertificateStore } from "./ca-store";
import { CertificateStore, fsCertificateStore } from "./ca-store";
export type CertificateBundle = {
priv: string;
@ -72,4 +73,4 @@ export class CertificateAuthority {
async blacklistClient(clientId: string) {
await this.certificateStore.blacklistCertificate(clientId);
}
}
}

5
server/internal/clients/event-handler.ts
View File

@ -2,6 +2,7 @@ import { Client, User } from "@prisma/client";
import { EventHandlerRequest, H3Event } from "h3";
import droplet from "@drop/droplet";
import prisma from "../db/database";
import { useCertificateAuthority } from "~/server/plugins/ca";
export type EventHandlerFunction<T> = (
h3: H3Event<EventHandlerRequest>,
@ -47,8 +48,8 @@ export function defineClientEventHandler<T>(handler: EventHandlerFunction<T>) {
});
}
const ca = h3.context.ca;
const certBundle = await ca.fetchClientCertificate(clientId);
const certificateAuthority = useCertificateAuthority();
const certBundle = await certificateAuthority.fetchClientCertificate(clientId);
// This does the blacklist check already
if (!certBundle)
throw createError({