mirror of
https://github.com/TryGhost/Ghost.git
synced 2025-01-06 22:40:14 -05:00
766bf99de9
issue #5286 - Moved the spam prevention functions into their own file - Added unit tests for the functions
87 lines
3 KiB
JavaScript
87 lines
3 KiB
JavaScript
var frontend = require('../controllers/frontend'),
|
|
config = require('../config'),
|
|
express = require('express'),
|
|
utils = require('../utils'),
|
|
|
|
frontendRoutes;
|
|
|
|
frontendRoutes = function (middleware) {
|
|
var router = express.Router(),
|
|
subdir = config.paths.subdir,
|
|
routeKeywords = config.routeKeywords,
|
|
indexRouter = express.Router(),
|
|
tagRouter = express.Router({mergeParams: true}),
|
|
authorRouter = express.Router({mergeParams: true}),
|
|
rssRouter = express.Router({mergeParams: true}),
|
|
privateRouter = express.Router();
|
|
|
|
// ### Admin routes
|
|
router.get(/^\/(logout|signout)\/$/, function redirect(req, res) {
|
|
/*jslint unparam:true*/
|
|
res.set({'Cache-Control': 'public, max-age=' + utils.ONE_YEAR_S});
|
|
res.redirect(301, subdir + '/ghost/signout/');
|
|
});
|
|
router.get(/^\/signup\/$/, function redirect(req, res) {
|
|
/*jslint unparam:true*/
|
|
res.set({'Cache-Control': 'public, max-age=' + utils.ONE_YEAR_S});
|
|
res.redirect(301, subdir + '/ghost/signup/');
|
|
});
|
|
|
|
// redirect to /ghost and let that do the authentication to prevent redirects to /ghost//admin etc.
|
|
router.get(/^\/((ghost-admin|admin|wp-admin|dashboard|signin|login)\/?)$/, function (req, res) {
|
|
/*jslint unparam:true*/
|
|
res.redirect(subdir + '/ghost/');
|
|
});
|
|
|
|
// password-protected frontend route
|
|
privateRouter.route('/')
|
|
.get(
|
|
middleware.isPrivateSessionAuth,
|
|
frontend.private
|
|
)
|
|
.post(
|
|
middleware.isPrivateSessionAuth,
|
|
middleware.spamPrevention.protected,
|
|
middleware.authenticateProtection,
|
|
frontend.private
|
|
);
|
|
|
|
rssRouter.route('/rss/').get(frontend.rss);
|
|
rssRouter.route('/rss/:page/').get(frontend.rss);
|
|
rssRouter.route('/feed/').get(function redirect(req, res) {
|
|
/*jshint unused:true*/
|
|
res.set({'Cache-Control': 'public, max-age=' + utils.ONE_YEAR_S});
|
|
res.redirect(301, subdir + '/rss/');
|
|
});
|
|
|
|
// Index
|
|
indexRouter.route('/').get(frontend.homepage);
|
|
indexRouter.route('/' + routeKeywords.page + '/:page/').get(frontend.homepage);
|
|
indexRouter.use(rssRouter);
|
|
|
|
// Tags
|
|
tagRouter.route('/').get(frontend.tag);
|
|
tagRouter.route('/' + routeKeywords.page + '/:page/').get(frontend.tag);
|
|
tagRouter.use(rssRouter);
|
|
|
|
// Authors
|
|
authorRouter.route('/').get(frontend.author);
|
|
authorRouter.route('/' + routeKeywords.page + '/:page/').get(frontend.author);
|
|
authorRouter.use(rssRouter);
|
|
|
|
// Mount the Routers
|
|
router.use('/' + routeKeywords.private + '/', privateRouter);
|
|
router.use('/' + routeKeywords.author + '/:slug/', authorRouter);
|
|
router.use('/' + routeKeywords.tag + '/:slug/', tagRouter);
|
|
router.use('/', indexRouter);
|
|
|
|
// Post Live Preview
|
|
router.get('/' + routeKeywords.preview + '/:uuid', frontend.preview);
|
|
|
|
// Default
|
|
router.get('*', frontend.single);
|
|
|
|
return router;
|
|
};
|
|
|
|
module.exports = frontendRoutes;
|