farcasclaudiu/Flowise
1
0
Fork 0
mirror of https://github.com/farcasclaudiu/Flowise.git synced 2026-06-29 09:01:06 +03:00
Code Issues Packages Projects Releases Wiki Activity

Chore/deny list urls (#4938)

Browse Source 
* Refactor URL filtering logic in App class

- Introduced a denylist for URLs using the DENYLIST_URLS environment variable.
- Updated the whitelist logic to filter out denylisted URLs, ensuring improved request validation.

* revery whitelist url changes

* revert whitelist url changes
This commit is contained in:
Henry Heng
2025-07-24 00:57:45 +01:00
committed by GitHub
parent d081221a97
commit a3f47af027
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
packages/server/src/index.ts
+1 -1
View File
@@ -210,7 +210,7 @@ export class App {
// Step 2: Check if the req path is casesensitive // Step 2: Check if the req path is casesensitive
if (URL_CASE_SENSITIVE_REGEX.test(req.path)) { if (URL_CASE_SENSITIVE_REGEX.test(req.path)) {
// Step 3: Check if the req path is in the whitelist // Step 3: Check if the req path is in the whitelist
const isWhitelisted = whitelistURLs.includes(req.path) const isWhitelisted = whitelistURLs.some((url) => req.path.startsWith(url))
if (isWhitelisted) { if (isWhitelisted) {
next() next()
} else if (req.headers['x-request-from'] === 'internal') { } else if (req.headers['x-request-from'] === 'internal') {