From e1a750cbe331eb97137a7ef14f3771e9c457a8e7 Mon Sep 17 00:00:00 2001
From: jeffcheasey88 <jeffcheasey88@peerat.dev>
Date: Tue, 19 Sep 2023 20:32:13 +0200
Subject: [PATCH] Limit ws logs to admin

---
 src/dev/peerat/backend/routes/admins/DynamicLogs.java | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/src/dev/peerat/backend/routes/admins/DynamicLogs.java b/src/dev/peerat/backend/routes/admins/DynamicLogs.java
index 2e7f0ff..3719c23 100644
--- a/src/dev/peerat/backend/routes/admins/DynamicLogs.java
+++ b/src/dev/peerat/backend/routes/admins/DynamicLogs.java
@@ -2,9 +2,8 @@ package dev.peerat.backend.routes.admins;
 
 import java.util.regex.Matcher;
 
-import org.jose4j.json.internal.json_simple.JSONObject;
-
 import dev.peerat.backend.bonus.extract.RouteDoc;
+import dev.peerat.backend.model.Group;
 import dev.peerat.backend.model.PeerAtUser;
 import dev.peerat.backend.repository.DatabaseRepository;
 import dev.peerat.framework.Context;
@@ -29,9 +28,13 @@ public class DynamicLogs implements Response{
 	@RouteDoc(path = "/admin/logs", responseCode = 200, responseDescription = "L'utilisateur peux voir les logs en directe")
 	@RouteDoc(responseCode = 401, responseDescription = "L'utilisateur n'a pas accès à cette ressource")
 
-	@Route(path = "^/admin/logs$", websocket = true)
+	@Route(path = "^/admin/logs$", needLogin = true, websocket = true)
 	public void exec(Matcher matcher, Context context, HttpReader reader, HttpWriter writer) throws Exception {
-		//check if admin
+		Group group = this.repo.getPlayerGroup(context.<PeerAtUser>getUser().getId(), 1);
+		if(!group.getName().equalsIgnoreCase("Quarter-Master - Battles PAC x CEI")){
+			context.response(423);
+			return;
+		}
 		
 		Key key = new Key();