Implement read-only mode (#1001)

* Implement read-only mode * Use localized string under default language for announce text * Redirect to user page rather than returning blank 400 * Protect call to `ParseBase64Image` * Add protections to SlotSettingsPage and nitpick format * Display the latest announcement (if any) on the landing page * Fix a kokoism Accidentally tried to use markdown within the landing page... I'm rather smart aren't I * Prevent possible XSS * Separate truncated announcement text and link with "..." * Apply suggestion from code review * Add read-only check to /postComment in slot page controller * Fix inconsistent tabbing
2025-07-28 07:58:40 +00:00 · 2024-03-29 22:51:12 -04:00 · 2024-03-29 22:51:12 -04:00 · 0ee8970c64
commit 0ee8970c64
parent 975fcab100
20 changed files with 176 additions and 18 deletions
--- a/ProjectLighthouse.Servers.Website/Controllers/SlotPageController.cs
+++ b/ProjectLighthouse.Servers.Website/Controllers/SlotPageController.cs
@ -10,7 +10,7 @@ using LBPUnion.ProjectLighthouse.Types.Logging;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;

-// I would like to apologize in advance for anyone dealing with this file. 
+// I would like to apologize in advance for anyone dealing with this file.
 // Theres probably a better way to do this with delegates but I'm tired.
 // TODO: Clean up this file
 // - jvyden
@ -63,6 +63,9 @@ public class SlotPageController : ControllerBase
        WebTokenEntity? token = this.database.WebTokenFromRequest(this.Request);
        if (token == null) return this.Redirect("~/login");

+        // Deny request if in read-only mode
+        if (ServerConfiguration.Instance.UserGeneratedContentLimits.ReadOnlyMode) return this.Redirect("~/slot/" + id);
+
        if (msg == null)
        {
            Logger.Error($"Refusing to post comment from {token.UserId} on level {id}, {nameof(msg)} is null", LogArea.Comments);