UNPKG

@budibase/server

Version:

Budibase Web Server

github.com/Budibase/budibase

Budibase/budibase

49 lines (46 loc) 1.59 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
import { Cookie, cache, context, utils } from "@budibase/backend-core" import { features } from "@budibase/pro" import { ClientHeader, Header, sdk } from "@budibase/shared-core" import { RecaptchaSessionCookie, UserCtx, Workspace } from "@budibase/types" import { Middleware, Next } from "koa" import { isProdWorkspaceID } from "../db/utils" import { isRecaptchaVerified } from "../utilities/redis" const middleware = (async (ctx: UserCtx, next: Next) => { const workspaceId = context.getWorkspaceId() // no app ID, requests are not targeting an app // if not production app - this is in the builder, recaptcha isn't enabled if (!workspaceId || !isProdWorkspaceID(workspaceId)) { return next() } if (!(await features.isRecaptchaEnabled())) { return next() } // builder users can skip validation if request comes from the builder if ( sdk.users.isBuilder(ctx.user) && ctx.headers[Header.CLIENT] === ClientHeader.BUILDER ) { return next() } const app = await cache.workspace.getWorkspaceMetadata(workspaceId) if ("state" in app && app.state === cache.workspace.WorkspaceState.INVALID) { throw new Error("App not found") } if ((app as Workspace).features?.recaptchaEnabled) { const cookie = utils.getCookie<RecaptchaSessionCookie>( ctx, Cookie.RecaptchaSession ) if (!cookie) { ctx.status = 498 return } const verified = await isRecaptchaVerified(cookie.sessionId) if (!verified) { ctx.status = 498 return } } return next() }) as Middleware export default middleware