sneak/upaas
1
0
Fork 0
Code Issues 14 Pull Requests 2 Actions Packages Projects Releases Wiki Activity

fix: resolve 1.0 audit bugs (closes #104, #105, #106, #107, #108) #109

Merged
sneak merged 6 commits from fix/1.0-audit-bugs into main 2026-02-20 13:47:12 +01:00
Conversation 1 Commits 6 Files Changed 7 +8 -2
1 changed files with 8 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 6cfd5023f9 - Show all commits

10
internal/middleware/middleware.go
View File

@ -411,8 +411,14 @@ func (m *Middleware) SetupRequired() func(http.Handler) http.Handler {
}
if setupRequired {
// Allow access to setup page
if request.URL.Path == "/setup" {
path := request.URL.Path
// Allow access to setup page, health endpoint, static
// assets, and API routes even before setup is complete.
if path == "/setup" ||
path == "/health" ||
strings.HasPrefix(path, "/s/") ||
strings.HasPrefix(path, "/api/") {
next.ServeHTTP(writer, request)
return