Andreas/wekan
1
0
Fork 0
mirror of https://github.com/wekan/wekan.git synced 2026-01-04 16:48:49 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Improved doc on server-side export route

Browse source
This commit is contained in:
Xavier Priour 2015-12-17 13:11:33 +01:00
parent 43b1c4b576
commit a45a899137
1 changed files with 10 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

10
models/export.js
View file

@ -1,5 +1,15 @@
/* global JsonRoutes */
if(Meteor.isServer) {
// todo XXX once we have a real API in place, move that route there
/*
* This route is used to export the board FROM THE APPLICATION.
* We want to identify the logged-in user without asking for password again,
* but the server-side API routing has no notion of "current user".
* So we have to pass login information (id + token) to authenticate.
*
* See https://blog.kayla.com.au/server-side-route-authentication-in-meteor/
* for detailed explanations
*/
JsonRoutes.add('get', '/api/b/:boardId/:userId/:loginToken', function (req, res) {
const { userId, loginToken, boardId } = req.params;
const hashToken = Accounts._hashLoginToken(loginToken);