4ev-link/4ev.link
1
0
Fork 0
mirror of https://github.com/4ev-link/4ev.link.git synced 2026-01-14 16:48:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix: Prevent users from updating seized links

Browse Source
This commit is contained in:
multipleof4
2025-11-21 12:47:04 -08:00
parent 37d4a0d1dd
commit 5509596df8
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
functions/api/links/update.js
View File

@@ -47,6 +47,11 @@ export async function onRequestPost({ request, env }) {
if (!Array.isArray(slugs) || !slugs.includes(slug)) if (!Array.isArray(slugs) || !slugs.includes(slug))
return new Response("Unauthorized",{ status:403 }); return new Response("Unauthorized",{ status:403 });
// Check if seized
const current = await env.KV_EV.get(slug);
if (current?.startsWith('🚫'))
return new Response("This link has been seized and cannot be updated.", { status: 403 });
let url = destination_url.startsWith("http") let url = destination_url.startsWith("http")
? destination_url ? destination_url
: `https://${destination_url}`; : `https://${destination_url}`;
@@ -72,3 +77,4 @@ export async function onRequestPost({ request, env }) {
return new Response(e.message,{ status:500 }); return new Response(e.message,{ status:500 });
} }
} }