RyderTech/nlcc-itinerary
1
0
Fork 0
Code Issues Pull Requests Packages Activity

security fixes

Browse Source
This commit is contained in:
Joshua Ryder
2025-10-12 00:24:27 -04:00
parent 773ea92f5d
commit dfdb3e0840
7 changed files with 14 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
server/api/notes/[sermonId].get.ts
View File

@@ -1,8 +1,8 @@
import { getSermonNote, getUserByUsername } from '~/server/utils/database' import { getSermonNote, getUserByUsername } from '~/server/utils/database'
import { getAuthCookie } from '~/server/utils/auth' import { getSessionUsername } from '~/server/utils/auth'
export default defineEventHandler(async (event) => { export default defineEventHandler(async (event) => {
const username = getAuthCookie(event) const username = await getSessionUsername(event)
if (!username) { if (!username) {
throw createError({ throw createError({

4
server/api/notes/[sermonId].post.ts
View File

@@ -1,8 +1,8 @@
import { saveSermonNote, getUserByUsername } from '~/server/utils/database' import { saveSermonNote, getUserByUsername } from '~/server/utils/database'
import { getAuthCookie } from '~/server/utils/auth' import { getSessionUsername } from '~/server/utils/auth'
export default defineEventHandler(async (event) => { export default defineEventHandler(async (event) => {
const username = getAuthCookie(event) const username = await getSessionUsername(event)
if (!username) { if (!username) {
throw createError({ throw createError({

4
server/api/notes/download/[sermonId].get.ts
View File

@@ -1,8 +1,8 @@
import { getSermonNote, getUserByUsername, getDatabase } from '~/server/utils/database' import { getSermonNote, getUserByUsername, getDatabase } from '~/server/utils/database'
import { getAuthCookie } from '~/server/utils/auth' import { getSessionUsername } from '~/server/utils/auth'
export default defineEventHandler(async (event) => { export default defineEventHandler(async (event) => {
const username = getAuthCookie(event) const username = await getSessionUsername(event)
if (!username) { if (!username) {
throw createError({ throw createError({

4
server/api/notes/email/[sermonId].post.ts
View File

@@ -1,9 +1,9 @@
import { getSermonNote, getSermonBySlug, getUserByUsername, getDatabase } from '~/server/utils/database' import { getSermonNote, getSermonBySlug, getUserByUsername, getDatabase } from '~/server/utils/database'
import { getAuthCookie } from '~/server/utils/auth' import { getSessionUsername } from '~/server/utils/auth'
import { sendSermonNotesEmail } from '~/server/utils/email' import { sendSermonNotesEmail } from '~/server/utils/email'
export default defineEventHandler(async (event) => { export default defineEventHandler(async (event) => {
const username = getAuthCookie(event) const username = await getSessionUsername(event)
if (!username) { if (!username) {
throw createError({ throw createError({

4
server/api/users/delete/[id].delete.ts
View File

@@ -1,8 +1,8 @@
import { deleteUser, getUserByUsername } from '~/server/utils/database' import { deleteUser, getUserByUsername } from '~/server/utils/database'
import { getAuthCookie } from '~/server/utils/auth' import { getSessionUsername } from '~/server/utils/auth'
export default defineEventHandler(async (event) => { export default defineEventHandler(async (event) => {
const username = getAuthCookie(event) const username = await getSessionUsername(event)
if (!username) { if (!username) {
throw createError({ throw createError({

4
server/api/users/password/[id].put.ts
View File

@@ -1,8 +1,8 @@
import { resetUserPassword, getUserByUsername } from '~/server/utils/database' import { resetUserPassword, getUserByUsername } from '~/server/utils/database'
import { getAuthCookie } from '~/server/utils/auth' import { getSessionUsername } from '~/server/utils/auth'
export default defineEventHandler(async (event) => { export default defineEventHandler(async (event) => {
const username = getAuthCookie(event) const username = await getSessionUsername(event)
if (!username) { if (!username) {
throw createError({ throw createError({

4
server/api/users/role/[id].put.ts
View File

@@ -1,8 +1,8 @@
import { updateUserRole, getUserByUsername } from '~/server/utils/database' import { updateUserRole, getUserByUsername } from '~/server/utils/database'
import { getAuthCookie } from '~/server/utils/auth' import { getSessionUsername } from '~/server/utils/auth'
export default defineEventHandler(async (event) => { export default defineEventHandler(async (event) => {
const username = getAuthCookie(event) const username = await getSessionUsername(event)
if (!username) { if (!username) {
throw createError({ throw createError({