expand/ccashfrontend
1
0
Fork 0
mirror of https://github.com/Expand-sys/ccashfrontend synced 2025-12-17 07:12:12 +11:00
Code Issues Projects Releases Packages Wiki Activity Actions

fuggin session clearing fo admins pogchamp

Browse source
This commit is contained in:
Expand-sys 2021-04-22 21:16:15 +10:00
parent 95f5d2cf48
commit 5a67d13f75
3 changed files with 43 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
index.js
View file

@ -151,7 +151,6 @@ app.get('/BankF', ensureAuthenticated, async function(req, res){
} }
logsent = logsent.body.value logsent = logsent.body.value
console.log(logsent)
if(logsent == 1 || logsent == -1 || logrec == null){ if(logsent == 1 || logsent == -1 || logrec == null){
logsent = undefined logsent = undefined
}else{ }else{
@ -249,12 +248,10 @@ app.post('/sendfunds', async function(req, res){
for( i in logrec){ for( i in logrec){
let d = new Date(logrec[i].time) let d = new Date(logrec[i].time)
logrec[i].time = d logrec[i].time = d
console.log(logrec[i].time)
} }
for( i in logsent){ for( i in logsent){
let d = new Date(logsent[i].time) let d = new Date(logsent[i].time)
logsent[i].time = d logsent[i].time = d
console.log(logsent[i].time)
} }
res.render("bankf",{ res.render("bankf",{

33
routes/admin.js
View file

@ -9,7 +9,10 @@ const expressValidator = require('express-validator');
const session = require('express-session'); const session = require('express-session');
const {postUser} = require('../helpers/functions.js') const {postUser} = require('../helpers/functions.js')
const got = require('got') const got = require('got')
const MemoryStore = require('memorystore')(session)
console.log('Sen was here') console.log('Sen was here')
router.get('/', checkAdmin, function(req, res){ router.get('/', checkAdmin, function(req, res){
res.render('adminsettings', { res.render('adminsettings', {
user: req.session.user, user: req.session.user,
@ -151,6 +154,36 @@ router.post('/userdelete', checkAdmin, async function(req,res){
errors: errors, errors: errors,
}) })
}) })
router.post('/destroyallsessions', checkAdmin, async function(req,res) {
let {attempt} = req.body;
let adminTest
let errors = []
try{
adminTest = await got.post(process.env.BANKAPIURL+'BankF/admin/vpass',{
json:{
attempt: attempt,
},
responseType:'json'
})
} catch(err){
console.log(err)
}
console.log(adminTest.body.value)
if(adminTest){
req.sessionStore.clear(function(err){
console.log(err)
})
res.redirect('/')
}else{
errors.push({msg: "failed admin password check"})
res.render("adminsettings",{
user: req.session.user,
admin: req.session.admin,
errors: errors,
})
}
})
router.post('/close', checkAdmin, async function(req,res){ router.post('/close', checkAdmin, async function(req,res){
let {attempt} = req.body; let {attempt} = req.body;
let close; let close;

10
views/adminsettings.pug
View file

@ -57,6 +57,16 @@ block content
br br
input.btn.btn-primary(type='submit',value='Submit') input.btn.btn-primary(type='submit',value='Submit')
br br
.card.shadow-lg
h4 Destroy All Sessions
form(method='POST', action='/admin/destroyallsessions')
#form-group
p WARNING THIS WILL DESTROY ALL LOGIN SESSIONS, EVERYONE WILL HAVE TO LOG IN AGAIN
label Confirm admin password to DESTROY
input.form-control(name='attempt', type='password')
br
input.btn.btn-danger(type='submit',value='Destroy')
br
.card.shadow-lg .card.shadow-lg
h4 Close Server h4 Close Server
form(method='POST', action='/admin/close') form(method='POST', action='/admin/close')