Persist CSRF and cookie secrets across server launches

2025-06-05 21:59:27 +02:00 · 2024-04-07 16:41:23 +03:00
parent 11193896b2
commit b07aef02c7
8 changed files with 106 additions and 37 deletions
--- a/src/constants.js
+++ b/src/constants.js
@ -40,12 +40,18 @@ const USER_DIRECTORY_TEMPLATE = Object.freeze({
    vectors: 'vectors',
 });

+/**
+ * @type {import('./users').User}
+ * @readonly
+ */
 const DEFAULT_USER = Object.freeze({
    uuid: '00000000-0000-0000-0000-000000000000',
    handle: 'user0',
    name: 'User',
    created: 0,
    password: '',
+    admin: true,
+    enabled: true,
 });

 const UNSAFE_EXTENSIONS = [