Add whitelist mode (#11291)

author: Eugen Rochko <eugen@zeonfederated.com> 2019-07-30 11:10:46 +0200
committer: GitHub <noreply@github.com> 2019-07-30 11:10:46 +0200
commit: 24552b5160a5090e7d6056fb69a209aa48fe4fce (patch)
tree: 57ab47f71d7f589c9da4dd959d3dec6f0902409a /streaming
parent: 85b7b565def2594b6ad791731802eb4c8a803a69 (diff)
1 files changed, 3 insertions, 2 deletions
diff --git a/streaming/index.js b/streaming/index.js
index 0529804b1..304e7e046 100644
--- a/streaming/index.js
+++ b/streaming/index.js
@@ -12,6 +12,7 @@ const uuid = require('uuid');
 const fs = require('fs');
 
 const env = process.env.NODE_ENV || 'development';
+const alwaysRequireAuth = process.env.WHITELIST_MODE === 'true' || process.env.AUTHORIZED_FETCH === 'true';
 
 dotenv.config({
   path: env === 'production' ? '.env.production' : '.env',
@@ -271,7 +272,7 @@ const startWorker = (workerId) => {
 
   const wsVerifyClient = (info, cb) => {
     const location = url.parse(info.req.url, true);
-    const authRequired = !PUBLIC_STREAMS.some(stream => stream === location.query.stream);
+    const authRequired = alwaysRequireAuth || !PUBLIC_STREAMS.some(stream => stream === location.query.stream);
     const allowedScopes = [];
 
     if (authRequired) {
@@ -306,7 +307,7 @@ const startWorker = (workerId) => {
       return;
     }
 
-    const authRequired = !PUBLIC_ENDPOINTS.some(endpoint => endpoint === req.path);
+    const authRequired = alwaysRequireAuth || !PUBLIC_ENDPOINTS.some(endpoint => endpoint === req.path);
     const allowedScopes = [];
 
     if (authRequired) {
author	Eugen Rochko <eugen@zeonfederated.com>	2019-07-30 11:10:46 +0200
committer	GitHub <noreply@github.com>	2019-07-30 11:10:46 +0200
commit	24552b5160a5090e7d6056fb69a209aa48fe4fce (patch)
tree	57ab47f71d7f589c9da4dd959d3dec6f0902409a /streaming
parent	85b7b565def2594b6ad791731802eb4c8a803a69 (diff)