8x48/homepage
1
0
Fork 0
mirror of https://github.com/gethomepage/homepage.git synced 2026-01-10 18:52:07 +08:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity

Enforce wss for api key

Browse Source
This commit is contained in:
shamoon
2026-01-04 10:34:08 -08:00
parent 64a3e8b6b6
commit f3e30a68d6
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/widgets/truenas/proxy.js
View File

@@ -138,8 +138,9 @@ export default async function truenasProxyHandler(req, res, map) {
try {
let data;
const wsUrl = new URL(formatApiCall(widgets?.[widget.type]?.wsAPI, { ...widget }));
wsUrl.protocol = wsUrl.protocol === "https:" ? "wss:" : "ws:";
const wsUrl = new URL(formatApiCall(widgets[widget.type].wsAPI, { ...widget }));
const useSecure = wsUrl.protocol === "https:" || Boolean(widget.key); // API key requires secure connection
wsUrl.protocol = useSecure ? "wss:" : "ws:";
logger.info("Connecting to TrueNAS websocket at %s", wsUrl);
const ws = new WebSocket(wsUrl, { rejectUnauthorized: false });