From 5e07f4d545ae20fc1b752f7933a5b1d749b3fedb Mon Sep 17 00:00:00 2001
From: bytedream <bytedream@protonmail.com>
Date: Sun, 1 Dec 2024 14:48:43 +0100
Subject: [PATCH] rename REPORT_SECRET env variable to API_SECRET

---
 .env.example                       | 3 ++-
 src/routes/api/feedback/+server.ts | 2 +-
 src/routes/api/report/+server.ts   | 4 ++--
 src/routes/api/user/+server.ts     | 2 +-
 4 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/.env.example b/.env.example
index fa0be7c..506ff37 100644
--- a/.env.example
+++ b/.env.example
@@ -1,10 +1,11 @@
 DATABASE_URI=sqlite://./database.db
 ADMIN_USER=admin
 ADMIN_PASSWORD=admin
-REPORT_SECRET=
 PUBLIC_START_DATE=2023-12-26T00:00:00+0200
 PUBLIC_BASE_PATH=
 
+API_SECRET=
+
 PUBLIC_SERVER_IP=example.com
 PUBLIC_TS_LINK=ts3server://example.com
 PUBLIC_DISCORD_LINK=https://example.com
diff --git a/src/routes/api/feedback/+server.ts b/src/routes/api/feedback/+server.ts
index 34af299..fcbce44 100644
--- a/src/routes/api/feedback/+server.ts
+++ b/src/routes/api/feedback/+server.ts
@@ -7,7 +7,7 @@ import type { CreationAttributes } from 'sequelize';
 import { env as public_env } from '$env/dynamic/public';
 
 export const POST = (async ({ request, url }) => {
-	if (env.REPORT_SECRET && url.searchParams.get('secret') !== env.REPORT_SECRET)
+	if (env.API_SECRET && url.searchParams.get('secret') !== env.API_SECRET)
 		return new Response(null, { status: 401 });
 
 	const parseResult = await FeedbackAddSchema.safeParseAsync(await request.json());
diff --git a/src/routes/api/report/+server.ts b/src/routes/api/report/+server.ts
index 0e4295e..1ae96e9 100644
--- a/src/routes/api/report/+server.ts
+++ b/src/routes/api/report/+server.ts
@@ -6,7 +6,7 @@ import { env } from '$env/dynamic/private';
 import { ReportAddSchema } from './schema';
 
 export const GET = (async ({ url }) => {
-	if (env.REPORT_SECRET && url.searchParams.get('secret') !== env.REPORT_SECRET)
+	if (env.API_SECRET && url.searchParams.get('secret') !== env.API_SECRET)
 		return new Response(null, { status: 401 });
 
 	const user = await User.findOne({ where: { uuid: url.searchParams.get('uuid') ?? '' } });
@@ -55,7 +55,7 @@ export const GET = (async ({ url }) => {
 }) satisfies RequestHandler;
 
 export const POST = (async ({ request, url }) => {
-	if (env.REPORT_SECRET && url.searchParams.get('secret') !== env.REPORT_SECRET)
+	if (env.API_SECRET && url.searchParams.get('secret') !== env.API_SECRET)
 		return new Response(null, { status: 401 });
 
 	const parseResult = await ReportAddSchema.safeParseAsync(await request.json());
diff --git a/src/routes/api/user/+server.ts b/src/routes/api/user/+server.ts
index dbaa84f..89650aa 100644
--- a/src/routes/api/user/+server.ts
+++ b/src/routes/api/user/+server.ts
@@ -4,7 +4,7 @@ import { env } from '$env/dynamic/private';
 import { Op } from 'sequelize';
 
 export const GET = (async ({ url }) => {
-	if (env.REPORT_SECRET && url.searchParams.get('secret') !== env.REPORT_SECRET)
+	if (env.API_SECRET && url.searchParams.get('secret') !== env.API_SECRET)
 		return new Response(null, { status: 401 });
 
 	const uuid = url.searchParams.get('uuid');