From f8f6c585196f35ed45bb85eed374c408c9ed2c02 Mon Sep 17 00:00:00 2001
From: Medzik <8584366-Medzik@users.noreply.gitlab.com>
Date: Mon, 2 Aug 2021 20:53:50 +0000
Subject: [PATCH] feat(delete): Add password. You must update env (TODO: JWT)

---
 .env.schema                  |  2 ++
 config/env.go                |  2 ++
 website/routes/api/delete.go | 14 ++++++++++++++
 3 files changed, 18 insertions(+)

diff --git a/.env.schema b/.env.schema
index c3f6427..ae0463f 100644
--- a/.env.schema
+++ b/.env.schema
@@ -2,3 +2,5 @@
 MONGODB_URI=mongodb+srv://...
 MONGODB_DB=...
 MONGODB_COLLECTION=...
+
+PASSWORD=PrOtEdTeD_pAsSwOrD
diff --git a/config/env.go b/config/env.go
index 31c2ee8..0970d84 100644
--- a/config/env.go
+++ b/config/env.go
@@ -11,4 +11,6 @@ var (
 	Mongo_URI        = os.Getenv("MONGODB_URI")
 	Mongo_DB         = os.Getenv("MONGODB_DB")
 	Mongo_Collection = os.Getenv("MONGODB_COLLECTION")
+
+	Password = os.Getenv("PASSWORD")
 )
diff --git a/website/routes/api/delete.go b/website/routes/api/delete.go
index 653374f..bcbf3e0 100644
--- a/website/routes/api/delete.go
+++ b/website/routes/api/delete.go
@@ -5,10 +5,24 @@ import (
 	"net/http"
 
 	"github.com/gin-gonic/gin"
+	"gitlab.com/gaming0skar123/go/pingbot/config"
 	"gitlab.com/gaming0skar123/go/pingbot/database/mongo"
 )
 
 func Delete(c *gin.Context) {
+	const BEARER_SCHEMA = "Password"
+	authHeader := c.GetHeader("Authorization")
+	passwordString := authHeader[len(BEARER_SCHEMA)+1:]
+
+	if passwordString != config.Password {
+		c.JSON(http.StatusUnauthorized, json{
+			"success": false,
+			"message": "Unauth!",
+		})
+
+		return
+	}
+
 	url := c.Param("url")
 
 	d, err := base64.StdEncoding.DecodeString(url)